You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@airflow.apache.org by je...@apache.org on 2022/09/23 03:19:29 UTC
[airflow] 08/13: Document the non-sensitive-only option for expose_config (#26507)
This is an automated email from the ASF dual-hosted git repository.
jedcunningham pushed a commit to branch v2-4-test
in repository https://gitbox.apache.org/repos/asf/airflow.git
commit 0aba4bd20af9811dca0f90e976f073f7fd3596e3
Author: Collin McNulty <co...@gmail.com>
AuthorDate: Tue Sep 20 10:46:04 2022 -0500
Document the non-sensitive-only option for expose_config (#26507)
Documents the new non-sensitive-only option for ``webserver.expose_config``.
(cherry picked from commit 675eb4db4e5d3da86b818fb3daccd3baf4d1ff4c)
---
airflow/config_templates/config.yml | 4 +++-
airflow/config_templates/default_airflow.cfg | 4 +++-
2 files changed, 6 insertions(+), 2 deletions(-)
diff --git a/airflow/config_templates/config.yml b/airflow/config_templates/config.yml
index a6d19e7e2c..97e544fc83 100644
--- a/airflow/config_templates/config.yml
+++ b/airflow/config_templates/config.yml
@@ -1212,7 +1212,9 @@
default: ""
- name: expose_config
description: |
- Expose the configuration file in the web server
+ Expose the configuration file in the web server. Set to "non-sensitive-only" to show all values
+ except those that have security implications. "True" shows all values. "False" hides the
+ configuration completely.
version_added: ~
type: string
example: ~
diff --git a/airflow/config_templates/default_airflow.cfg b/airflow/config_templates/default_airflow.cfg
index dd51e04848..174f33dbc8 100644
--- a/airflow/config_templates/default_airflow.cfg
+++ b/airflow/config_templates/default_airflow.cfg
@@ -622,7 +622,9 @@ error_logfile = -
# documentation - https://docs.gunicorn.org/en/stable/settings.html#access-log-format
access_logformat =
-# Expose the configuration file in the web server
+# Expose the configuration file in the web server. Set to "non-sensitive-only" to show all values
+# except those that have security implications. "True" shows all values. "False" hides the
+# configuration completely.
expose_config = False
# Expose hostname in the web server