From commits-return-89733-archive-asf-public=cust-asf.ponee.io@airflow.apache.org Wed Jan 15 07:19:07 2020 Return-Path: X-Original-To: archive-asf-public@cust-asf.ponee.io Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [207.244.88.153]) by mx-eu-01.ponee.io (Postfix) with SMTP id DBF9D18065E for ; Wed, 15 Jan 2020 08:19:06 +0100 (CET) Received: (qmail 46740 invoked by uid 500); 15 Jan 2020 07:19:06 -0000 Mailing-List: contact commits-help@airflow.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@airflow.apache.org Delivered-To: mailing list commits@airflow.apache.org Received: (qmail 46731 invoked by uid 99); 15 Jan 2020 07:19:06 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 15 Jan 2020 07:19:06 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id A0EE3C02F8 for ; Wed, 15 Jan 2020 07:19:05 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -112.99 X-Spam-Level: X-Spam-Status: No, score=-112.99 tagged_above=-999 required=6.31 tests=[ENV_AND_HDR_SPF_MATCH=-0.5, KAM_DMARC_STATUS=0.01, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, USER_IN_DEF_SPF_WL=-7.5, USER_IN_WHITELIST=-100] autolearn=disabled Received: from mx1-ec2-va.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id jYnDtAcK8FCU for ; Wed, 15 Jan 2020 07:19:01 +0000 (UTC) Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=207.244.88.153; helo=mail.apache.org; envelope-from=jira@apache.org; receiver= Received: from mail.apache.org (hermes.apache.org [207.244.88.153]) by mx1-ec2-va.apache.org (ASF Mail Server at mx1-ec2-va.apache.org) with SMTP id 70323BC535 for ; Wed, 15 Jan 2020 07:19:01 +0000 (UTC) Received: (qmail 46401 invoked by uid 99); 15 Jan 2020 07:19:01 -0000 Received: from mailrelay1-us-west.apache.org (HELO mailrelay1-us-west.apache.org) (209.188.14.139) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 15 Jan 2020 07:19:01 +0000 Received: from jira-he-de.apache.org (static.172.67.40.188.clients.your-server.de [188.40.67.172]) by mailrelay1-us-west.apache.org (ASF Mail Server at mailrelay1-us-west.apache.org) with ESMTP id 994A7E00A5 for ; Wed, 15 Jan 2020 07:19:00 +0000 (UTC) Received: from jira-he-de.apache.org (localhost.localdomain [127.0.0.1]) by jira-he-de.apache.org (ASF Mail Server at jira-he-de.apache.org) with ESMTP id 1649878016E for ; Wed, 15 Jan 2020 07:19:00 +0000 (UTC) Date: Wed, 15 Jan 2020 07:19:00 +0000 (UTC) From: =?utf-8?Q?Marcin_Jasi=C5=84ski_=28Jira=29?= To: commits@airflow.incubator.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Updated] (AIRFLOW-6560) db password leaks to logs MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/AIRFLOW-6560?page=3Dcom.atlass= ian.jira.plugin.system.issuetabpanels:all-tabpanel ] Marcin Jasi=C5=84ski updated AIRFLOW-6560: ------------------------------------- Description:=20 I have configured Airflow metadata db as MySQL. {code:java} sql_alchemy_conn =3D sqla+mysql://airflow:airflow@localhost:3306/airflow{co= de} After that I have used initdb command: {code:java} airflow initdb{code} Tables in the airflow db have been created. Then I have runed commands: {code:java} airflow scheduler airflow webserver -p 8080{code} in logs: {code:java} [2020-01-14 18:39:03,457: INFO/MainProcess] Connected to sqla+mysql://airfl= ow:airflow@localhost:3306/airflow{code} password as a plain text. Probably comes that from Celery -=C2=A0[https://github.com/celery/celery/bl= ob/master/celery/worker/consumer/connection.py#L24] was: I have configured Airflow metadata db as MySQL. {code:java} sql_alchemy_conn =3D sqla+mysql://airflow:airflow@localhost:3306/airflow{co= de} After that I have used initdb command: {code:java} airflow initdb{code} Tables in the airflow db have been created. Then I have runed commands: {code:java} airflow scheduler airflow webserver -p 8080{code} in logs: {code:java} [2020-01-14 18:39:03,457: INFO/MainProcess] Connected to sqla+mysql://airfl= ow:airflow@localhost:3306/airflow{code} password as a plain text. > db password leaks to logs > ------------------------- > > Key: AIRFLOW-6560 > URL: https://issues.apache.org/jira/browse/AIRFLOW-6560 > Project: Apache Airflow > Issue Type: Bug > Components: logging, security > Affects Versions: 1.10.6 > Reporter: Marcin Jasi=C5=84ski > Priority: Critical > > I have configured Airflow metadata db as MySQL. > {code:java} > sql_alchemy_conn =3D sqla+mysql://airflow:airflow@localhost:3306/airflow{= code} > After that I have used initdb command: > {code:java} > airflow initdb{code} > Tables in the airflow db have been created. > Then I have runed commands: > {code:java} > airflow scheduler > airflow webserver -p 8080{code} > in logs: > {code:java} > [2020-01-14 18:39:03,457: INFO/MainProcess] Connected to sqla+mysql://air= flow:airflow@localhost:3306/airflow{code} > password as a plain text. > Probably comes that from Celery -=C2=A0[https://github.com/celery/celery/= blob/master/celery/worker/consumer/connection.py#L24] -- This message was sent by Atlassian Jira (v8.3.4#803005)