[
https://issues.apache.org/jira/browse/BROOKLYN-269?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Duncan Godwin resolved BROOKLYN-269.
------------------------------------
Resolution: Fixed
Fix Version/s: 0.12.0
> Sensitive external values exposed in debug logs when using external config
> supplier
> -----------------------------------------------------------------------------------
>
> Key: BROOKLYN-269
> URL: https://issues.apache.org/jira/browse/BROOKLYN-269
> Project: Brooklyn
> Issue Type: Bug
> Affects Versions: 0.10.0
> Reporter: John McCabe
> Fix For: 0.12.0
>
>
> Passwords etc are exposed in debug logs when using an external config
> supplied, in this case
> {{org.apache.brooklyn.core.config.external.InPlaceExternalConfigSupplier}}
> {code}
> password: $brooklyn:external("my-credentials", "supersecretpassword")
> {code}
> {code}
> 2016-05-18 07:51:27,979 DEBUG o.a.b.c.b.s.d.BrooklynDslDeferredSupplier
> [brooklyn-execmanager-ajTGRUqW-212]: Resolved supersecretpassword from
> $brooklyn:external("my-credentials", "password")
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
