-
Task
-
Resolution: Done
-
Medium
-
None
-
None
-
OOM Sprint 8, OOM Sprint 9 - Beijing freeze
unhashed cleartext password in onap-parameters.yaml and setenv.bash
OPENSTACK_API_KEY: ""
passed to setenv.bash (default "docker"
ONAP_DOCKER_PASS=${ONAP_DOCKER_PASS:-docker}
follow
https://wiki.onap.org/display/DW/CII+Badging+Program
see security tab in
https://bestpractices.coreinfrastructure.org/projects/1578/edit#security
(logging badge above for IE)
The public repositories MUST NOT leak a valid private credential (e.g., a working password or private key) that is intended to limit public access.