You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by da...@apache.org on 2021/02/12 13:30:09 UTC
[camel] branch master updated: CAMEL-16190 Sensitive configuration
values not redacted in Auto-configuration summary (#5078)
This is an automated email from the ASF dual-hosted git repository.
davsclaus pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/camel.git
The following commit(s) were added to refs/heads/master by this push:
new 1043508 CAMEL-16190 Sensitive configuration values not redacted in Auto-configuration summary (#5078)
1043508 is described below
commit 10435080731c38abb1b9a2cd477f8ac0712ab0e9
Author: Peter Palaga <pp...@redhat.com>
AuthorDate: Fri Feb 12 13:29:45 2021 +0000
CAMEL-16190 Sensitive configuration values not redacted in Auto-configuration summary (#5078)
---
.../src/main/java/org/apache/camel/util/SensitiveUtils.java | 4 ++++
.../src/test/java/org/apache/camel/util/SensitiveUtilsTest.java | 2 ++
2 files changed, 6 insertions(+)
diff --git a/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java b/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java
index 00631ac..1f04b05 100644
--- a/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java
+++ b/core/camel-util/src/main/java/org/apache/camel/util/SensitiveUtils.java
@@ -95,6 +95,10 @@ public final class SensitiveUtils {
}
public static boolean containsSensitive(String text) {
+ int lastPeriod = text.lastIndexOf('.');
+ if (lastPeriod >= 0) {
+ text = text.substring(lastPeriod + 1);
+ }
text = text.toLowerCase(Locale.ENGLISH);
text = StringHelper.replaceAll(text, "-", "");
return SENSITIVE_KEYS.contains(text);
diff --git a/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java b/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java
index 27a1a21..47ca1d8 100644
--- a/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java
+++ b/core/camel-util/src/test/java/org/apache/camel/util/SensitiveUtilsTest.java
@@ -44,7 +44,9 @@ class SensitiveUtilsTest {
assertTrue(SensitiveUtils.containsSensitive("access-Key"));
assertTrue(SensitiveUtils.containsSensitive("client-secret"));
assertTrue(SensitiveUtils.containsSensitive("authorization-token"));
+ assertTrue(SensitiveUtils.containsSensitive("foo.bar.accessKey"));
+ assertFalse(SensitiveUtils.containsSensitive("foo.bar.accessKey."));
assertFalse(SensitiveUtils.containsSensitive("foo"));
assertFalse(SensitiveUtils.containsSensitive("bar"));
}