[jira] [Commented] (ISIS-2995) IsisModuleSecurityBypass does not avoid BCrypt

ASF subversion and git services (Jira) Fri, 08 Apr 2022 05:02:06 -0700


    [ 
https://issues.apache.org/jira/browse/ISIS-2995?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17519535#comment-17519535
 ]


ASF subversion and git services commented on ISIS-2995:
-------------------------------------------------------

Commit 91982b5d41ec598de57a91b7e38a7ddd96fcaef1 in isis's branch 
refs/heads/master from Andi Huber
[ https://gitbox.apache.org/repos/asf?p=isis.git;h=91982b5d41 ]

ISIS-2995: revert bypassing auth on demo (prev. commit)

> IsisModuleSecurityBypass does not avoid BCrypt 
> -----------------------------------------------
>
>                 Key: ISIS-2995
>                 URL: https://issues.apache.org/jira/browse/ISIS-2995
>             Project: Isis
>          Issue Type: Bug
>          Components: Isis Core
>    Affects Versions: 2.0.0-M7
>            Reporter: Jörg Rade
>            Assignee: Andi Huber
>            Priority: Major
>             Fix For: 2.0.0-RC1
>
>
> Even when IsisModuleSecurityBypass.class  is included in DemoAppWicketJpa, 
> BCrypt action are logged to the console (using parameters:  -Xms1G 
> -Djava.security.egd=file:///dev/./urandom 
> -Djava.security.debug="provider,engine=SecureRandom")
> See:   
> https://the-asf.slack.com/archives/CFC42LWBV/p1649400664122289?thread_ts=1648577147.703919&cid=CFC42LWBV



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (ISIS-2995) IsisModuleSecurityBypass does not avoid BCrypt

Reply via email to