External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-05-13 20:37:39 -02:30
Code Issues Packages Projects Releases Wiki Activity

Prevent nested encrypted field leak in activity stream.

Browse Source
This commit is contained in:
Aaron Tan
2017-05-19 16:47:06 -04:00
parent 7c2e5df659
commit 7f1f68ee28
6 changed files with 119 additions and 30 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
awx/main/models/notifications.py
View File

@@ -6,7 +6,7 @@ import logging
from django.db import models
from django.core.mail.message import EmailMessage
from django.utils.translation import ugettext_lazy as _
from django.utils.encoding import smart_str
from django.utils.encoding import smart_str, force_text
# AWX
from awx.api.versioning import reverse
@@ -119,6 +119,13 @@ class NotificationTemplate(CommonModelNameNotUnique):
notification_obj = EmailMessage(subject, backend_obj.format_body(body), sender, recipients)
return backend_obj.send_messages([notification_obj])
def display_notification_configuration(self):
field_val = self.notification_configuration.copy()
for field in self.notification_class.init_parameters:
if field in field_val and force_text(field_val[field]).startswith('$encrypted$'):
field_val[field] = '$encrypted$'
return field_val
class Notification(CreatedModifiedModel):
'''