##// END OF EJS Templates
auth-plugins: add mechanismy to remove secrets from plugin logs....
auth-plugins: add mechanismy to remove secrets from plugin logs. - it's not recommended to log things like ldap access passwords or other credentials. - we expose a machanismy for each plugin to define a unsafe keys to be removed.

File last commit:

r1:854a839a default
r1631:73a21507 stable
Show More
release-notes-3.3.2.rst
25 lines | 499 B | text/x-rst | RstLexer
/ docs / release-notes / release-notes-3.3.2.rst
project: added all source files and assets
r1 |RCE| 3.3.2 |RNS|
-----------------
Release Date
^^^^^^^^^^^^
- 2015-06-05
security fixes
^^^^^^^^^^^^^^
* Stored XSS attempts on user login fields, and other text input fields.
* DOM Based XSS attempts
* HTML Injection
* Cross frame scripting (XFS)
* Invalidation of concurrent sessions on password change.
* Downgrading of HTTPS connections.
fixes
^^^^^
* Generation of URLs on system with custom URL prefixes.
* VCSServer: Improved memory management of the cache data used by the server.