Add some warnings about checkout credentials being stored unencrypted

2016-10-06 11:48:48 -07:00 · 2016-10-06 11:48:48 -07:00 · c459886fc5
commit c459886fc5
parent 4111dbc967
2 changed files with 4 additions and 2 deletions
--- a/pkgs/racket-doc/pkg/scribblings/pkg.scrbl
+++ b/pkgs/racket-doc/pkg/scribblings/pkg.scrbl
@ -946,7 +946,8 @@ for @nonterm{key}.
        set only in @exec{installation} scope.}
  @item{@exec{git-checkout-credentials} --- A list of git credentials in the form
        @nonterm{username}@litchar{:}@nonterm{password} that are tried when downloading
-        packages with git sources using the HTTP or HTTPS protocols.}
+        packages with git sources using the HTTP or HTTPS protocols. The credentials are
+        currently stored @bold{unencrypted} on the filesystem.}
  @item{@exec{trash-max-packages} --- A limit on the number of package implementations
        that are kept in a trash folder when the package is removed or updated.}
  @item{@exec{trash-max-seconds} --- A limit on the time since a package is removed or
--- a/racket/collects/pkg/private/config.rkt
+++ b/racket/collects/pkg/private/config.rkt
@ -230,7 +230,8 @@
                             [(list _)
                              (credentials-format-error
                               "not enough elements for git checkout credentials"
-                               val)])))]
+                               val)])))
+        (displayln "WARNING: checkout credentials are stored UNENCRYPTED" (current-error-port))]
       [(list* key args)
        (pkg-error "unsupported config key\n  key: ~a" key)])]
    [else