as else we write it to /etc/pve/storage.cfg which is readable by
www-data, a not really private group...
Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
# fix me in section config create never need an empty entity.
delete $param->{nodes} if !$param->{nodes};
- my $password = extract_param($param, 'password')
- if $type eq 'cifs' && $param->{username};
+ my $password;
+ # always extract pw, else it gets written to the www-data readable scfg
+ if (my $tmp_pw = extract_param($param, 'password')) {
+ if ($type eq 'cifs' && $param->{username}) {
+ $password = $tmp_pw;
+ } else {
+ warn "ignore password parameter\n";
+ }
+ }
if ($param->{portal}) {
$param->{portal} = PVE::Storage::resolv_portal($param->{portal});