You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@airflow.apache.org by ka...@apache.org on 2022/09/20 15:46:13 UTC

[airflow] branch main updated: Document the non-sensitive-only option for expose_config (#26507)

This is an automated email from the ASF dual-hosted git repository.

kaxilnaik pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/airflow.git


The following commit(s) were added to refs/heads/main by this push:
     new 675eb4db4e Document the non-sensitive-only option for expose_config (#26507)
675eb4db4e is described below

commit 675eb4db4e5d3da86b818fb3daccd3baf4d1ff4c
Author: Collin McNulty <co...@gmail.com>
AuthorDate: Tue Sep 20 10:46:04 2022 -0500

    Document the non-sensitive-only option for expose_config (#26507)
    
    Documents the new non-sensitive-only option for ``webserver.expose_config``.
---
 airflow/config_templates/config.yml          | 4 +++-
 airflow/config_templates/default_airflow.cfg | 4 +++-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/airflow/config_templates/config.yml b/airflow/config_templates/config.yml
index 2a4d21b9d4..b20fea7ff2 100644
--- a/airflow/config_templates/config.yml
+++ b/airflow/config_templates/config.yml
@@ -1212,7 +1212,9 @@
       default: ""
     - name: expose_config
       description: |
-        Expose the configuration file in the web server
+        Expose the configuration file in the web server. Set to "non-sensitive-only" to show all values
+        except those that have security implications. "True" shows all values. "False" hides the
+        configuration completely.
       version_added: ~
       type: string
       example: ~
diff --git a/airflow/config_templates/default_airflow.cfg b/airflow/config_templates/default_airflow.cfg
index dd51e04848..174f33dbc8 100644
--- a/airflow/config_templates/default_airflow.cfg
+++ b/airflow/config_templates/default_airflow.cfg
@@ -622,7 +622,9 @@ error_logfile = -
 # documentation - https://docs.gunicorn.org/en/stable/settings.html#access-log-format
 access_logformat =
 
-# Expose the configuration file in the web server
+# Expose the configuration file in the web server. Set to "non-sensitive-only" to show all values
+# except those that have security implications. "True" shows all values. "False" hides the
+# configuration completely.
 expose_config = False
 
 # Expose hostname in the web server