Support #2283: Credentials are stored in Plain Text making this not pass Cloud App vetting - Google Sheets Import/Export - LukeMurphey.net

Support #2283

Credentials are stored in Plain Text making this not pass Cloud App vetting

Added by Joseph Cooper over 5 years ago. Updated over 4 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Luke Murphey

Target version:

Start date:

07/24/2018

Due date:

% Done:

100%

Description

[The application contains plain text credentials which are not permitted in Splunk Cloud. Please see https://docs.splunk.com/Documentation/Splunk/6.4.2/AdvancedDev/SetupExampleCredentials or http://blogs.splunk.com/2016/10/10/encrypt-a-modular-input-field-, The application modifies files outside the app directory, which isn’t permitted. Ensure all file manipulation occurs within this app's directory tree.]

Check for insecure HTTP calls in Python.

-Possible insecure HTTP Connection. Match: socket File: bin/google_drive_app/six.py Line Number: 275 File: bin/google_drive_app/six.py Line Number: 275

Check for passwords and secrets.

-Possible secret disclosure in appserver/controllers/service_account_keys.py:120: login=True, File: appserver/controllers/service_account_keys.py Line Number: 120

History

#1 Updated by Luke Murphey over 4 years ago

Status changed from New to Closed
% Done changed from 0 to 100

This was fixed in version 2.0.

Also available in: Atom PDF

Project

General

Profile

Splunk Apps » Google Sheets Import/Export

Issues

Custom queries

Support #2283

Credentials are stored in Plain Text making this not pass Cloud App vetting

History

#1 Updated by Luke Murphey over 4 years ago