Ceph Dashboard Charm

Generated passwords can violate ceph dashboard password policies

Bug #2008281 reported by Peter Sabaini on 2023-02-23

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Ceph Dashboard Charm	New	Undecided	Unassigned

Bug Description

We're generating a random password thusly:

```
    def _gen_user_password(self, length: int = 12) -> str:
        """Generate a password"""
        alphabet = (
            string.ascii_lowercase + string.ascii_uppercase + string.digits)

return ''.join(secrets.choice(alphabet) for i in range(length))
```

https://opendev.org/openstack/charm-ceph-dashboard/src/branch/master/src/charm.py#L590

But with that randomly generated passwords we could run afoul the ceph dashboard policies, e.g. in CI I've seen it hit this:

https://github.com/ceph/ceph/blob/main/src/pybind/mgr/dashboard/services/access_control.py#L114

Revision history for this message

Peter Sabaini (peter-sabaini) wrote on 2023-02-23:

CI artifacts:
https://openstack-ci-reports.ubuntu.com/artifacts/03b/871315/2/check/jammy-yoga/03be719/

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.