You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@qpid.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2020/09/02 19:33:00 UTC
[jira] [Commented] (QPID-8460) [Broker-J] Do not expose private
information to exception message
[ https://issues.apache.org/jira/browse/QPID-8460?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17189656#comment-17189656 ]
ASF subversion and git services commented on QPID-8460:
-------------------------------------------------------
Commit aa934369a6313dd26b501ed50405c4c200bd346b in qpid-broker-j's branch refs/heads/7.1.x from vavrtom
[ https://gitbox.apache.org/repos/asf?p=qpid-broker-j.git;h=aa93436 ]
QPID-8460: [Broker-j] Do not expose private information to exception message (#55)
Co-authored-by: Tomas Vavricka <to...@deutsche-boerse.com>
(cherry picked from commit 734fb3994f74ae066b587d3563322f10e47e6727)
> [Broker-J] Do not expose private information to exception message
> -----------------------------------------------------------------
>
> Key: QPID-8460
> URL: https://issues.apache.org/jira/browse/QPID-8460
> Project: Qpid
> Issue Type: Improvement
> Components: Broker-J
> Affects Versions: qpid-java-broker-9.0.0
> Reporter: Tomas Vavricka
> Priority: Minor
>
> * Obfuscate password value if IllegalArgumentException is thrown in ConfiguredAutomatedAttribute.convert()
> * Do not add base64String to IllegalArgumentException message in Strings.java as it can contain private information
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org