Hey all,
I've been working with error handling during vmware deployment and noticed
that Ansible seems to store cleartext passwords in the ansible_failed_tasks
variable provided by rescue sections in blocks even tho they've been set to
private.
Not sure if this is a bug or intentional behavior( or user error), that's
why i wanted to ask if anybody else has experienced this behavior.
As example, here's a shortened output of the variable:
"ansible_failed_task": {
"args": {
"provider": {
"password": "password123",
}
}
For comparisen, the ansible_failed_result variable stores the variable as
NO_LOG_PARAMETER as i'd expect
"ansible_failed_result": {
"invocation": {
"module_args": {
"provider": {
"password": "VALUE_SPECIFIED_IN_NO_LOG_PARAMETER" }}}}
--
You received this message because you are subscribed to the Google Groups
"Ansible Development" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-devel+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-devel/b1ef7882-9e70-479a-ba1a-f6cc90d0cf36n%40googlegroups.com.
