properly escape quotes in passwords by calling to_ruby

database passwords can contain special characters, especially " and ' so we can't just print the value of the field enclosed by double quotes as that would break whenever the user uses a literal " in their password using to_ruby here and not to_yaml, as the former gives us correct escaping without the whole `---` and `\n` enclosing that to_yaml forces. using to_yaml would require to pass *the whole* config hash to it
theforeman · Oct 18, 2024 · d14ae8b · d14ae8b
1 parent b1a2286
commit d14ae8b
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/templates/database.yml.epp b/templates/database.yml.epp
@@ -30,6 +30,6 @@
   username: <%= $username %>
 <% } -%>
 <% if $password { -%>
-  password: "<%= $password %>"
+  password: <%= stdlib::to_ruby($password) %>
 <% } -%>
   pool: <%= $db_pool %>