You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@wicket.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2016/07/19 22:01:20 UTC
[jira] [Commented] (WICKET-6211) PasswordTextField should clear
password by default
[ https://issues.apache.org/jira/browse/WICKET-6211?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15384953#comment-15384953 ]
ASF subversion and git services commented on WICKET-6211:
---------------------------------------------------------
Commit 280f7f0d023eab50fe224ea4b39d7b2aa512a467 in wicket's branch refs/heads/wicket-7.x from [~svenmeier]
[ https://git-wip-us.apache.org/repos/asf?p=wicket.git;h=280f7f0 ]
WICKET-6211 clear password on detach
> PasswordTextField should clear password by default
> --------------------------------------------------
>
> Key: WICKET-6211
> URL: https://issues.apache.org/jira/browse/WICKET-6211
> Project: Wicket
> Issue Type: Improvement
> Components: wicket
> Affects Versions: 7.3.0, 8.0.0-M1
> Reporter: Sven Meier
> Assignee: Sven Meier
> Priority: Minor
>
> If the application developer does not take extra care, the password entered via PasswordTextField is stored along with the containing page in the page store.
> This should be prevented by default by clearing the model object after each request.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)