3diy
/
moonraker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

docs: provide additional context for the secrets module 

Advise users to use unique credentials, and warn them that unattended
clients can be configured to steal credentials.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
This commit is contained in:
Eric Callahan 2022-02-26 08:27:11 -05:00
parent 2bc43ec3df
commit ab09364a98
No known key found for this signature in database
GPG Key ID: 7027245FBBDDF59A
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docs/configuration.md
View File

@ -1638,6 +1638,15 @@ password: {secrets.mqtt_credentials.password}
enable_moonraker_api: True
```
!!! warning
The purpose of the `[secrets]` module is to keep credentials and
other sensitive information out of configuration files and Moonraker's
log. These items are stored in plain text, it is wise to use
unique credentials. Never leave a Moonraker client application open
unattended in an untrusted location, as it would be possible for a
malicious actor to reconfigure moonraker to send items stored in the
secrets file to themselves via `mqtt`, `notifer`, etc.
Home Assistant Switch Example:
```ini