feat: restrict rfc2136 kerberos password from being exposed in logs

Signed-off-by: Dustin Scott <[email protected]>
kubernetes-sigs · Apr 11, 2022 · d035ecc · d035ecc
1 parent 7191e3d
commit d035ecc
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/pkg/apis/externaldns/types.go b/pkg/apis/externaldns/types.go
@@ -166,7 +166,7 @@ type Config struct {
 	RFC2136GSSTSIG                    bool
 	RFC2136KerberosRealm              string
 	RFC2136KerberosUsername           string
-	RFC2136KerberosPassword           string
+	RFC2136KerberosPassword           string `secure:"yes"`
 	RFC2136TSIGKeyName                string
 	RFC2136TSIGSecret                 string `secure:"yes"`
 	RFC2136TSIGSecretAlg              string