[jira] Created: (CONTINUUM-2314) Password is printed in logs in clear text when adding a project fails

Carlos Sanchez (JIRA) Sat, 25 Jul 2009 11:38:22 -0700

Password is printed in logs in clear text when adding a project fails
---------------------------------------------------------------------


                 Key: CONTINUUM-2314
                 URL: http://jira.codehaus.org/browse/CONTINUUM-2314
             Project: Continuum
          Issue Type: Bug
          Components: Security
    Affects Versions: 1.3.3
            Reporter: Carlos Sanchez
            Priority: Blocker


I got this in the continuum log, I've changed the parameters to hide the info, 
but where I say PASSWORDINCLEARTEXT it had my password there 
Actually it had a bad password with a typo (that's why I got unauthorized) but 
it was close enough to the real one

2009-07-24 16:03:54,137 [addMavenTwoProjectBackgroundThread] INFO  
org.apache.maven.continuum.project.builder.maven.MavenTwoContinuumProjectBuilder
  - Downloading https://myusername:**[email protected]/repos/pom.xml
2009-07-24 16:03:55,392 [addMavenTwoProjectBackgroundThread] ERROR 
org.apache.maven.continuum.project.builder.maven.MavenTwoContinuumProjectBuilder
  - Error
 adding project: Unauthorized 
https://myusername:[email protected]/repos/pom.xml

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: 
http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] Created: (CONTINUUM-2314) Password is printed in logs in clear text when adding a project fails

Reply via email to