DWH database is used by the engine for the new 4.0 dashboard feature, so credentials were added to its configuration, but not to the list of keys to filter in the logs.
DWH database password appears in the logs as-is.
DWH_DB_PASSWORD was added to SENSITIVE_KEYS
The password is replaces with '***'
I the log files, I can see :
Value of property 'DWH_DB_PASSWORD' is 'myrealpassword'.
But at the same time:
Value of property 'ENGINE_SSO_CLIENT_SECRET' is '***'.
DWH_DB_PASSWORD should be hidden too
AFAICT this refers to engine log files, not dwh (or engine-setup). Changing product/component.
Target release should be placed once a package build is known to fix a issue. Since this bug is not modified, the target version has been reset. Please use target milestone to plan a fix for a oVirt release.
Steps for reproduction/verification:
setup engine 4.0 with dwh
grep -R DWH_DB_PASSWORD /var/log/ovirt-engine/*
With broken version:
/var/log/ovirt-engine/engine.log:2016-08-24 10:10:20,764 INFO [org.ovirt.engine.core.uutils.config.ShellLikeConfd] (ServerService Thread Pool -- 45)  Value of property 'DWH_DB_PASSWORD' is 'zJQ11m3Cl4tJIrXJ0sdKEj'.
With fixed version:
/var/log/ovirt-engine/engine.log:2016-08-24 10:14:20,444 INFO [org.ovirt.engine.core.uutils.config.ShellLikeConfd] (ServerService Thread Pool -- 46)  Value of property 'DWH_DB_PASSWORD' is '***'.
Fabrice, please confirm. Did you see it elsewhere? And thanks for the report!
I don't remember seeing it elsewhere.
verified in ovirt-engine-setup-4.0.3-0.1.el7ev.noarch