You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@wicket.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2016/07/19 22:01:20 UTC

[jira] [Commented] (WICKET-6211) PasswordTextField should clear password by default

    [ https://issues.apache.org/jira/browse/WICKET-6211?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15384953#comment-15384953 ] 

ASF subversion and git services commented on WICKET-6211:
---------------------------------------------------------

Commit 280f7f0d023eab50fe224ea4b39d7b2aa512a467 in wicket's branch refs/heads/wicket-7.x from [~svenmeier]
[ https://git-wip-us.apache.org/repos/asf?p=wicket.git;h=280f7f0 ]

WICKET-6211 clear password on detach


> PasswordTextField should clear password by default
> --------------------------------------------------
>
>                 Key: WICKET-6211
>                 URL: https://issues.apache.org/jira/browse/WICKET-6211
>             Project: Wicket
>          Issue Type: Improvement
>          Components: wicket
>    Affects Versions: 7.3.0, 8.0.0-M1
>            Reporter: Sven Meier
>            Assignee: Sven Meier
>            Priority: Minor
>
> If the application developer does not take extra care, the password entered via PasswordTextField is stored along with the containing page in the page store.
> This should be prevented by default by clearing the model object after each request.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)