-
Notifications
You must be signed in to change notification settings - Fork 96
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Remove admin.secret from configuration #1279
Conversation
catch T:E -> | ||
_ = lager:error("Couldn't get admin user (~s) record: ~p", | ||
[Key, {T, E}]), | ||
{T, E} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
{error, {T,E}}
? To satisfy return type of check_admin_creds
Updated ^^; |
Diff looks nice 👍 First run of r_t with mb flavor:
|
73ebafc
to
3e368e2
Compare
|
My results:
|
Correct.
In mb flavor, cs nodes except dev1 are not configured properly, became they
are not used at all before.
|
Please review this. basho/riak_cs_multibag#33 |
|
Instead it is retrieved from Riak directly in startup sequence, from admin.key specified at configuration file. But in special case admin.key is specified as "admin-key", it does not retrieve admin secret from Riak, instead sets it as admin-secret. admin.secret will be deprecated in near future, which is currently ignored at all.
2078845
to
3ad6484
Compare
All riak_test cases passed for both basic and mb flavors by the combination with basho/riak_cs_multibag#33. Great for better security / less operational burden ❗ |
Remove admin.secret from configuration Reviewed-by: shino
@borshop merge |
hey guys -- could you update http://docs.basho.com/riak/cs/2.1.1/cookbooks/configuration/riak-cs/ to reflect the current correct and best practices in regard to the admin secret? I'm confused. |
Instead it is retrieved from Riak directly in startup sequence, from
admin.key specified at configuration file. But in special case
admin.key is specified as "admin-key", it does not retrieve admin
secret from Riak, instead sets it as admin-secret. admin.secret will
be deprecated in near future, which is currently ignored at all.