Fix a bunch of potential security issues (secret leaking) (#1736) (#1751)

* Fix a bunch of potential security issues (secret leaking). * oneandone_server was already ok. * Add more parameters for pagerduty_alert. * Add more no_log=True. (cherry picked from commit 29bd5a9486) Co-authored-by: Felix Fontein <felix@fontein.de>
2025-07-26 14:41:23 -07:00 · 2021-02-08 17:04:38 +01:00 · 2021-02-08 17:04:38 +01:00 · 4def9439bd
commit 4def9439bd
parent 023654473b
25 changed files with 52 additions and 30 deletions
--- a/plugins/modules/identity/keycloak/keycloak_client.py
+++ b/plugins/modules/identity/keycloak/keycloak_client.py
@ -707,7 +707,7 @@ def main():
        enabled=dict(type='bool'),
        client_authenticator_type=dict(type='str', choices=['client-secret', 'client-jwt'], aliases=['clientAuthenticatorType']),
        secret=dict(type='str', no_log=True),
-        registration_access_token=dict(type='str', aliases=['registrationAccessToken']),
+        registration_access_token=dict(type='str', aliases=['registrationAccessToken'], no_log=True),
        default_roles=dict(type='list', aliases=['defaultRoles']),
        redirect_uris=dict(type='list', aliases=['redirectUris']),
        web_origins=dict(type='list', aliases=['webOrigins']),