Description of problem: Password is visible in logs when you create a docker repository through weUI Version-Release number of selected component (if applicable): satellite-6.7.2-1 How reproducible: Steps to Reproduce: 1. WebUI --> Products --> Repository Discovery --> Select repository Type -->Container images 2. Select --> Registry to Discover --> registry.redhat.io 3. Use your credentials in Username / Password 4. Once your discovery over select the images to create a product. Actual results: 2020-08-09T17:49:20 [I|app|8d3628f4] Started POST "/katello/api/v2/repositories?organization_id=1" for 10.74.8.66 at 2020-08-09 17:49:20 +0530 2020-08-09T17:49:20 [I|app|8d3628f4] Processing by Katello::Api::V2::RepositoriesController#create as JSON 2020-08-09T17:49:20 [I|app|8d3628f4] Parameters: {"docker_upstream_name"=>"rhmap47/httpd", "name"=>"rhmap47/httpd", "label"=>"rhmap47_httpd", "content_type"=>"docker", "product_id"=>339, "unprotected"=>true, "verify_ssl"=>true, "upstream_username"=>"MY-Username", "upstream_password"=>"[FILTERED]", "url"=>"https://registry.redhat.io", "organization_id"=>"1", "api_version"=>"v2", "repository"=>{"name"=>"rhmap47/httpd", "label"=>"rhmap47_httpd", "url"=>"https://registry.redhat.io", "unprotected"=>true, "content_type"=>"docker", "product_id"=>339, "docker_upstream_name"=>"rhmap47/httpd", "upstream_username"=>"MY-USERNAME", "upstream_password"=>"[FILTERED]"}} 2020-08-09T17:49:21 [I|app|8d3628f4] Current user set to admin (admin) 2020-08-09T17:49:21 [I|bac|8d3628f4] Task {label: Actions::Katello::Repository::CreateRoot, id: 92164271-b3cb-4a33-a209-ce4f50108e7f, execution_plan_id: ee02a732-3ef4-4c58-82f3-078e50eee5be} state changed: planning 2020-08-09T17:49:21 [I|app|] Current user set to admin (admin) 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on name rhmap47/httpd 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on major 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on minor 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on gpg_key_id 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on content_id 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on arch noarch 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on label rhmap47_httpd 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on url https://registry.redhat.io 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on unprotected true 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on content_type docker 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on product_id 339 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on checksum_type 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on pulp_scratchpad_checksum_type 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on docker_upstream_name rhmap47/httpd 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on mirror_on_sync true 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on download_policy 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on verify_ssl_on_sync true 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on upstream_username MY-USERNAME 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on upstream_password ABC#@XYZ 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on ostree_upstream_sync_policy 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on ostree_upstream_sync_depth 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on deb_releases 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on deb_components 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on deb_architectures 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on ignore_global_proxy false 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on ssl_ca_cert_id 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on ssl_client_cert_id 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on ssl_client_key_id 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on ignorable_content 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on docker_tags_whitelist [] 2020-08-09T17:49:21 [I|aud|] Katello::RootRepository (38) create event on description 2020-08-09T17:49:21 [I|app|] Current user set to admin (admin) 2020-08-09T17:49:21 [I|app|] Current user set to admin (admin) 2020-08-09T17:49:21 [I|app|] Current user set to admin (admin) 2020-08-09T17:49:21 [I|bac|] Task {label: Actions::Katello::Repository::CreateRoot, id: 92164271-b3cb-4a33-a209-ce4f50108e7f, execution_plan_id: ee02a732-3ef4-4c58-82f3-078e50eee5be} state changed: planned Expected results: upstream_password must be filterd Additional info:
*** This bug has been marked as a duplicate of bug 1630536 ***