On Sat, Jul 05, 2014 at 10:19:54AM -0700, Matt Welland wrote: > I'd like to automate a clone but I think I'd prefer the password not be in > the URL. The concern is that the password in the URL might be visible in > the webserver logs.
Passwords are not passed in the request via URL, but as part of the HTTP header. That one is normally not logged. Joerg _______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
