MiqQeue is logging queue items being put on it. And it's not sanitizing secrets. [----] I, [2017-05-11T13:42:30.645710 #15396:19d8d88] INFO -- : MIQ(MiqQueue.put) Message id: [14016], id: [], Zone: [default], Role: [ems_operations], Server: [], Ident: [generic], Target id: [], Instance id: [7], Task id: [], Command: [ManageIQ::Providers::EmbeddedAnsible::AutomationManager::MachineCredential.update_in_provider], Timeout: [600], Priority: [20], State: [ready], Deliver On: [], Data: [], Args: [{:id=>7, :name=>"first-cred", :type=>"ManageIQ::Providers::EmbeddedAnsible::AutomationManager::MachineCredential", :userid=>"", :become_method=>"", :become_username=>"", :password=>"secrete-pwd", :ssh_key_data=>"secrete-pkey", :become_password=>"secret-es-pwed", :vault_password=>"secret-vault", :task_id=>22}]
https://github.com/ManageIQ/manageiq/pull/15084
New commit detected on ManageIQ/manageiq/master: https://github.com/ManageIQ/manageiq/commit/48704ac60d138663512b924acf647af6089b7930 commit 48704ac60d138663512b924acf647af6089b7930 Author: James Wong <jwong> AuthorDate: Fri May 12 14:35:49 2017 -0400 Commit: James Wong <jwong> CommitDate: Fri May 12 15:57:49 2017 -0400 simply add tokens to PASSWORD_FIELDS https://bugzilla.redhat.com/show_bug.cgi?id=1450183 .../ansible_tower/shared/automation_manager/credential.rb | 4 ++-- .../ansible_tower/shared/automation_manager/tower_api.rb | 1 + lib/vmdb/settings/walker.rb | 9 +-------- spec/support/ansible_shared/automation_manager/credential.rb | 4 ++++ 4 files changed, 8 insertions(+), 10 deletions(-)