[jira] [Resolved] (CXF-4540) Colon character in the password is not hanled properly in AbstractHTTPDestination class

Daniel Kulp (JIRA) Wed, 03 Oct 2012 08:46:08 -0700

     [ 
https://issues.apache.org/jira/browse/CXF-4540?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Daniel Kulp resolved CXF-4540.
------------------------------

       Resolution: Fixed
    Fix Version/s: 2.6.3
                   2.5.6
                   2.4.10
         Assignee: Daniel Kulp
    
> Colon character in the password is not hanled properly in 
> AbstractHTTPDestination class
> ---------------------------------------------------------------------------------------
>
>                 Key: CXF-4540
>                 URL: https://issues.apache.org/jira/browse/CXF-4540
>             Project: CXF
>          Issue Type: Bug
>          Components: Transports
>            Reporter: Boris Ivanov
>            Assignee: Daniel Kulp
>             Fix For: 2.4.10, 2.5.6, 2.6.3
>
>
> If the user password contains colon character then the 
> org.apache.cxf.configuration.security.AuthorizationPolicy.getPassword() 
> method returns only the substring before the colon character.
> The issue is in the following class: 
> org.apache.cxf.transport.http.AbstractHTTPDestination
> In method getAuthorizationPolicyFromMessage(String credentials) the 
> credentials are split by colon. Then only the second element of the array is 
> set as password, but in this case the elements are more then two.
> Example of credentials:
> "Aladin:Test:1234"

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Resolved] (CXF-4540) Colon character in the password is not hanled properly in AbstractHTTPDestination class

Reply via email to