*Running latest Version 2.4.6*
When connecting to an Oracle database, I noticed that response.toolbar ("db
tables" button) is not hiding the password in the connection string.
*dal.py*
REGEX_NOPASSWD = re.compile('(?<=\:)([^:@/]+)(?=@.+)')
...
def hide_password(uri):
return REGEX_NOPASSWD.sub('******',uri)
This expects the DAL URI string to be of the form:
oracle://username:password@database
But in reality isn't the Oracle URI string required to be of this form
(slash instead of colon before the password)? :
oracle://username/password@database
in which case the REGEX_NOPASSWD wouldn't find the password match.
Incidentally, the documentation near the top of the dal.py module shows the
Oracle URL string incorrectly(?) as 'oracle://username:password@database'.
--
---
You received this message because you are subscribed to the Google Groups
"web2py-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
