Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 2042751

Summary: Output issue when changing admin password from the rhui-manager > user manager
Product: Red Hat Update Infrastructure for Cloud Providers Reporter: Taft Sanders <tasander>
Component: RHUAAssignee: RHUI Bug List <rhui-bugs>
Status: CLOSED WONTFIX QA Contact: Radek Bíba <rbiba>
Severity: low Docs Contact:
Priority: low    
Version: 4.0.0CC: gtanzill, mminar
Target Milestone: ---Keywords: Triaged
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2025-09-16 13:29:37 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Taft Sanders 2022-01-20 04:57:37 UTC 
Description of problem:
Additional content is redacted by "*" characters in the output than should be.

Version-Release number of selected component (if applicable):
4.0

How reproducible:
Every time

Steps to Reproduce:
1. Visit the user manager section of rhui-manager and change admin password.
2. Log back into rhui-manager with the new password and change it back to the old password or something else and observe the 'reset-admin-password' option also redacted
3.

Actual results:
Change 1:
[localhost] env PULP_SETTINGS=/etc/pulp/settings.py /usr/bin/pulpcore-manager reset-admin-password -p ********

Change 2:
[localhost] env PULP_SETTINGS=/etc/pulp/settings.py /usr/bin/pulpcore-manager reset-********-password -p ********


Expected results:
No difference

Additional info:
No issues are caused by the additional characters being redacted. Password set on each change works to log into rhui-manager.
Comment 1 Radek Bíba 2024-11-25 14:36:19 UTC 
This literally only happens if you set your new password to "admin", in which case this string is sanitized also from the part of the command "reset-admin-password". Arguably, it should only be sanitized from the part of the command after "-p", but I don't think you should set your password to something as simple as "admin" in the first place.