airflow-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Marcin Jasiński (Jira) <j...@apache.org>
Subject [jira] [Updated] (AIRFLOW-6560) db password leaks to logs
Date Wed, 15 Jan 2020 07:19:00 GMT

     [ https://issues.apache.org/jira/browse/AIRFLOW-6560?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Marcin Jasiński updated AIRFLOW-6560:
-------------------------------------
    Description: 
I have configured Airflow metadata db as MySQL.
{code:java}
sql_alchemy_conn = sqla+mysql://airflow:airflow@localhost:3306/airflow{code}
After that I have used initdb command:
{code:java}
airflow initdb{code}
Tables in the airflow db have been created.

Then I have runed commands:
{code:java}
airflow scheduler
airflow webserver -p 8080{code}
in logs:
{code:java}
[2020-01-14 18:39:03,457: INFO/MainProcess] Connected to sqla+mysql://airflow:airflow@localhost:3306/airflow{code}
password as a plain text.

Probably comes that from Celery - [https://github.com/celery/celery/blob/master/celery/worker/consumer/connection.py#L24]

  was:
I have configured Airflow metadata db as MySQL.
{code:java}
sql_alchemy_conn = sqla+mysql://airflow:airflow@localhost:3306/airflow{code}
After that I have used initdb command:
{code:java}
airflow initdb{code}
Tables in the airflow db have been created.

Then I have runed commands:
{code:java}
airflow scheduler
airflow webserver -p 8080{code}
in logs:
{code:java}
[2020-01-14 18:39:03,457: INFO/MainProcess] Connected to sqla+mysql://airflow:airflow@localhost:3306/airflow{code}
password as a plain text.


> db password leaks to logs
> -------------------------
>
>                 Key: AIRFLOW-6560
>                 URL: https://issues.apache.org/jira/browse/AIRFLOW-6560
>             Project: Apache Airflow
>          Issue Type: Bug
>          Components: logging, security
>    Affects Versions: 1.10.6
>            Reporter: Marcin Jasiński
>            Priority: Critical
>
> I have configured Airflow metadata db as MySQL.
> {code:java}
> sql_alchemy_conn = sqla+mysql://airflow:airflow@localhost:3306/airflow{code}
> After that I have used initdb command:
> {code:java}
> airflow initdb{code}
> Tables in the airflow db have been created.
> Then I have runed commands:
> {code:java}
> airflow scheduler
> airflow webserver -p 8080{code}
> in logs:
> {code:java}
> [2020-01-14 18:39:03,457: INFO/MainProcess] Connected to sqla+mysql://airflow:airflow@localhost:3306/airflow{code}
> password as a plain text.
> Probably comes that from Celery - [https://github.com/celery/celery/blob/master/celery/worker/consumer/connection.py#L24]



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Mime
View raw message