Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update data_source_aws_kms_secrets.go #15169

Merged
merged 2 commits into from
Sep 16, 2020
Merged

Update data_source_aws_kms_secrets.go #15169

merged 2 commits into from
Sep 16, 2020

Conversation

zopanix
Copy link
Contributor

@zopanix zopanix commented Sep 16, 2020

This commit will fix the fact that terraform display sensitive information in it's plan when using the data source for KMS Secrets. Plugin API ocmpatibility was not respected.

Community Note

  • Please vote on this pull request by adding a 👍 reaction to the original pull request comment to help the community and maintainers prioritize this request
  • Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for pull request followers and do not help prioritize the request

Closes #15157

Release note for CHANGELOG:

fix: Stop displaying sensitive information for kms secrets datasources

@zopanix
Update data_source_aws_kms_secrets.go
be7d44e 
This commit will fix the fact that terraform display sensitive information in it's plan when using the data source for KMS Secrets. Plugin API ocmpatibility was not respected.
@zopanix zopanix requested a review from a team September 16, 2020 09:28
@ghost ghost added size/XS Managed by automation to categorize the size of a PR. needs-triage Waiting for first response or review from a maintainer. service/kms Issues and PRs that pertain to the kms service. labels Sep 16, 2020
@anGie44 anGie44 added bug Addresses a defect in current functionality. and removed needs-triage Waiting for first response or review from a maintainer. labels Sep 16, 2020
@anGie44 anGie44 self-assigned this Sep 16, 2020
anGie44
anGie44 approved these changes Sep 16, 2020
View reviewed changes
Copy link
Contributor

@anGie44 anGie44 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the PR @zopanix ! LGTM 🚀

Tested in 0.13:

An execution plan has been generated and is shown below.
Resource actions are indicated with the following symbols:
 <= read (data resources)

Terraform will perform the following actions:

  # data.aws_kms_secrets.example will be read during apply
  # (config refers to values not yet known)
 <= data "aws_kms_secrets" "example"  {
      ~ id        = "2020-09-16 16:35:08.590068 +0000 UTC" -> "2020-09-16 16:35:09.717029 +0000 UTC"
        plaintext = (sensitive value)

Tested in 0.12 (no changes from original behavior):

data.aws_kms_secrets.example: Refreshing state...
aws_kms_key.a: Refreshing state... [id=....]

------------------------------------------------------------------------

No changes. Infrastructure is up-to-date.

Output of acceptance test:

--- PASS: TestAccAWSKmsSecretsDataSource_basic (18.46s)

@anGie44 anGie44 added this to the v3.7.0 milestone Sep 16, 2020
@anGie44 anGie44 merged commit 4acabfc into hashicorp:master Sep 16, 2020
@anGie44 anGie44 mentioned this pull request Sep 16, 2020
Closed
anGie44 added a commit that referenced this pull request Sep 16, 2020
@anGie44
Update CHANGELOG for #15169
ab974be
@ghost
Copy link

ghost commented Sep 17, 2020

This has been released in version 3.7.0 of the Terraform AWS provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading.

For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template for triage. Thanks!

anGie44 added a commit that referenced this pull request Sep 18, 2020
@anGie44
Update CHANGELOG for #15169
019cdae
@ewbankkit ewbankkit mentioned this pull request Sep 22, 2020
Closed
@ghost
Copy link

ghost commented Oct 16, 2020

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks!

@ghost ghost locked as resolved and limited conversation to collaborators Oct 16, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@anGie44 anGie44 anGie44 approved these changes

Assignees

@anGie44 anGie44

Labels
bug Addresses a defect in current functionality. service/kms Issues and PRs that pertain to the kms service. size/XS Managed by automation to categorize the size of a PR.
Projects
None yet
Milestone
v3.7.0
Development

Successfully merging this pull request may close these issues.

[0.13.1] Terraform displaying sensitive values in the logs
2 participants
@zopanix @anGie44