Hi,
While trying to setup cTAKES in production to process a JMS queue of
medical notes, I got flagged by one of our production rules:
"Passwords in clear not allowed in logs"
https://issues.apache.org/jira/browse/CTAKES-455
Patch provided, see attachment.
It is a minor thing, and would help anybody running cTAKES in production
that has strict security policies.
Kind regards,
Alex Zbarcea
diff --git ctakes-dictionary-lookup-fast/src/main/java/org/apache/ctakes/dictionary/lookup2/util/UmlsUserApprover.java ctakes-dictionary-lookup-fast/src/main/java/org/apache/ctakes/dictionary/lookup2/util/UmlsUserApprover.java
index 4f9d155b..2dfcfa0f 100644
--- ctakes-dictionary-lookup-fast/src/main/java/org/apache/ctakes/dictionary/lookup2/util/UmlsUserApprover.java
+++ ctakes-dictionary-lookup-fast/src/main/java/org/apache/ctakes/dictionary/lookup2/util/UmlsUserApprover.java
@@ -125,7 +125,7 @@ public enum UmlsUserApprover {
}
if ( pass.equals( CHANGEME ) || pass.equals( CHANGE_ME ) ) {
LOGGER.info( "Not checking UMLS Account for user " + user + " password " + pass );
- LOGGER.error( " Password " + pass + " not allowed, verify you are setting " + PASS_PARAM + " or " + UMLSPW_PARAM + " properly." );
+ LOGGER.error( " Password provided not allowed, verify you are setting " + PASS_PARAM + " or " + UMLSPW_PARAM + " properly." );
return false;
}
