You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@camel.apache.org by da...@apache.org on 2021/02/12 13:30:09 UTC

[camel] branch master updated: CAMEL-16190 Sensitive configuration values not redacted in Auto-configuration summary (#5078)

This is an automated email from the ASF dual-hosted git repository.

davsclaus pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/camel.git


The following commit(s) were added to refs/heads/master by this push:
     new 1043508  CAMEL-16190 Sensitive configuration values not redacted in Auto-configuration summary (#5078)
1043508 is described below

commit 10435080731c38abb1b9a2cd477f8ac0712ab0e9
Author: Peter Palaga <pp...@redhat.com>
AuthorDate: Fri Feb 12 13:29:45 2021 +0000

    CAMEL-16190 Sensitive configuration values not redacted in Auto-configuration summary (#5078)
---
 .../src/main/java/org/apache/camel/util/SensitiveUtils.java           | 4 ++++
 .../src/test/java/org/apache/camel/util/SensitiveUtilsTest.java       | 2 ++
 2 files changed, 6 insertions(+)

diff --git a/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java b/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java
index 00631ac..1f04b05 100644
--- a/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java
+++ b/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java
@@ -95,6 +95,10 @@ public final class SensitiveUtils {
     }
 
     public static boolean containsSensitive(String text) {
+        int lastPeriod = text.lastIndexOf('.');
+        if (lastPeriod >= 0) {
+            text = text.substring(lastPeriod + 1);
+        }
         text = text.toLowerCase(Locale.ENGLISH);
         text = StringHelper.replaceAll(text, "-", "");
         return SENSITIVE_KEYS.contains(text);
diff --git a/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java b/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java
index 27a1a21..47ca1d8 100644
--- a/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java
+++ b/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java
@@ -44,7 +44,9 @@ class SensitiveUtilsTest {
         assertTrue(SensitiveUtils.containsSensitive("access-Key"));
         assertTrue(SensitiveUtils.containsSensitive("client-secret"));
         assertTrue(SensitiveUtils.containsSensitive("authorization-token"));
+        assertTrue(SensitiveUtils.containsSensitive("foo.bar.accessKey"));
 
+        assertFalse(SensitiveUtils.containsSensitive("foo.bar.accessKey."));
         assertFalse(SensitiveUtils.containsSensitive("foo"));
         assertFalse(SensitiveUtils.containsSensitive("bar"));
     }