software/theia: Fix password leak in authentication promise

8b4a177c · Xavier Thompson · 510b0d1e · 8b4a177c · 8b4a177c
Commit 8b4a177c authored Nov 29, 2021 by Xavier Thompson
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 6 deletions

software/theia/buildout.hash.cfg software/theia/buildout.hash.cfg +1 -1

software/theia/instance-theia.cfg.jinja.in software/theia/instance-theia.cfg.jinja.in +5 -5

No files found.
--- a/software/theia/buildout.hash.cfg
+++ b/software/theia/buildout.hash.cfg
@@ -15,7 +15,7 @@

 [instance-theia]
 _update_hash_filename_ = instance-theia.cfg.jinja.in
-md5sum = f396d9a0780f4fb17016dbd32b56d7b8
+md5sum = d95588f4dde795b9453fcfaadddbf19d

 [instance]
 _update_hash_filename_ = instance.cfg.in

--- a/software/theia/instance-theia.cfg.jinja.in
+++ b/software/theia/instance-theia.cfg.jinja.in
@@ -71,7 +71,7 @@ recipe =
 instance-promises =
  $${theia-listen-promise:name}
  $${frontend-listen-promise:name}
-  $${frontend-authentification-promise:name}
+  $${frontend-authentication-promise:name}
  $${remote-frontend-url-available-promise:name}
  {% if additional_frontend %}
  $${remote-additional-frontend-url-available-promise:name}
@@ -94,15 +94,15 @@ name = $${:_buildout_section_name_}.py
 config-host = $${frontend-instance:ip}
 config-port = $${frontend-instance:port}

-[frontend-authentification-promise]
+[frontend-authentication-promise]
 <= monitor-promise-base
 promise = check_url_available
 name = $${:_buildout_section_name_}.py
-username = $${frontend-instance-password:username}
-password = $${frontend-instance-password:passwd}
 ip = $${frontend-instance:ip}
 port = $${frontend-instance:port}
-config-url = https://$${:username}:$${:password}@[$${:ip}]:$${:port}
+config-url = https://[$${:ip}]:$${:port}
+config-username = $${frontend-instance-password:username}
+config-password = $${frontend-instance-password:passwd}

 [remote-frontend-url-available-promise]
 <= monitor-promise-base