[
https://issues.apache.org/jira/browse/VFS-430?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13420757#comment-13420757
]
Antonin Stefanutti commented on VFS-430:
----------------------------------------
I don't know any other places. I'll let you know if I stumble upon new places
during my development tests.
One suggestion would be to update the {{FileName.toString()}} implementation by
relying on the {{FileName.getFriendlyURI()}}. That would prevent the logging of
clear text password inadvertently.
> The SoftRefFilesCache class logs clear text password
> ----------------------------------------------------
>
> Key: VFS-430
> URL: https://issues.apache.org/jira/browse/VFS-430
> Project: Commons VFS
> Issue Type: Bug
> Affects Versions: 2.0
> Reporter: Antonin Stefanutti
> Fix For: 2.1
>
>
> The {{org.apache.commons.vfs2.cache.SoftRefFilesCache}} class logs
> {{FileName}} in the {{putFile}} method with the {{FileName.toString()}} that
> returns URL with clear password while it should be using the
> {{FileName.getFriendlyURI()}} method.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
