##// END OF EJS Templates
auth-plugins: add mechanismy to remove secrets from plugin logs....
auth-plugins: add mechanismy to remove secrets from plugin logs. - it's not recommended to log things like ldap access passwords or other credentials. - we expose a machanismy for each plugin to define a unsafe keys to be removed.

File last commit:

r1:854a839a default
r1631:73a21507 stable
Show More
release-notes-2.2.7.rst
13 lines | 256 B | text/x-rst | RstLexer

|RCE| 2.2.7 |RNS|

General

  • 2015-02-03

Fixes

  • Security: fixed severe issue with leaking of auth_tokens(api_keys) on the following API calls; get_repo, update_repo, get_locks, and get_user_groups.