4bb73a1baeafd254ca4325cde1bbba8f9e8ae186 - salt-formulas/keystone

commit	4bb73a1baeafd254ca4325cde1bbba8f9e8ae186	[log] [tgz]
author	Oleksandr Bryndzii <obryndzii@mirantis.com>	Thu Aug 30 12:12:43 2018 +0300
committer	Oleksandr Bryndzii <obryndzii@mirantis.com>	Thu Aug 30 12:26:50 2018 +0300
tree	e77bcbc8e6dd2705da972c275fafa8491ff3ecc1
parent	d9ccafe5101907bafb2a2906246f21c8da7b8dc4 [diff]

Update keystone config files permissions

The /etc/keystone/*.conf|*.yaml files are world readable.
This may lead to sensitive information leakage and cloud compromise.

Set keystone config files permissions to 0640.
Set keystone config files owner and group to root:keystone.

Change-Id: Id4790a4b2b1362a3eb2457216f24cc06d78371af
Related-Prod: https://mirantis.jira.com/browse/PROD-22095

keystone/client/os_client_config.sls[diff]
keystone/server.sls[diff]

2 files changed

tree: e77bcbc8e6dd2705da972c275fafa8491ff3ecc1

_grains/
_modules/
_states/
debian/
doc/
keystone/
metadata/
tests/
.gitignore
.kitchen.yml
.travis.yml
bindep.txt
CHANGELOG.rst
FORMULA
LICENSE
Makefile
metadata.yml
README.rst
VERSION