hideGroup passwords are defined in plaintexts

kabhijeet · August 22, 2022, 1:12pm

Hi

For a hideGroup configuration, we provide the password in plaintext.
Is there any alternative to this configuration where the password is not in plaintext i.e. sourced from somewhere else, like a file?

   <hideGroup>
      <name>debug</name>
      <password>secret</password>
   </hideGroup>

Thanks

cohult · August 23, 2022, 2:55pm

Hi

Instead of setting the hideGroup config in confd.conf, you can set the hideGroup config at runtime.
See ConfD UG “Storing ConfD configuration parameters in CDB” and the examples.confd/confdconf/dyncfg example