[JBoss JIRA] Created: (TEIID-1403) Salesforce connection password is displayed in plain text in Jopr
8:33 a.m.
Salesforce connection password is displayed in plain text in Jopr
-----------------------------------------------------------------
Key: TEIID-1403
URL: https://issues.jboss.org/browse/TEIID-1403
Project: Teiid
Issue Type: Bug
Components: Jopr Plugin
Reporter: Paul Nittel
Assignee: Steven Hawkins
Attachments: OoopsYourPasswordIsShowing.png
I created a Salesforce model and connection and deployed them to a JBoss SOA instance.
While investigating a problem, I realized Jopr was showing the login info in plain text.
See the attached screenshot.
If we can mask this, that would be great. It's a concern otherwise.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:33 a.m.
New subject: [JBoss JIRA] Updated: (TEIID-1403) Salesforce connection password is displayed in plain text in Jopr
[
https://issues.jboss.org/browse/TEIID-1403?page=com.atlassian.jira.plugin...
]
Paul Nittel updated TEIID-1403:
-------------------------------
Attachment: OoopsYourPasswordIsShowing.png
Picture of Jopr exposing the password
Salesforce connection password is displayed in plain text in Jopr
-----------------------------------------------------------------
Key: TEIID-1403
URL: https://issues.jboss.org/browse/TEIID-1403
Project: Teiid
Issue Type: Bug
Components: Jopr Plugin
Reporter: Paul Nittel
Assignee: Steven Hawkins
Attachments: OoopsYourPasswordIsShowing.png
I created a Salesforce model and connection and deployed them to a JBoss SOA instance.
While investigating a problem, I realized Jopr was showing the login info in plain text.
See the attached screenshot.
If we can mask this, that would be great. It's a concern otherwise.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
9:44 a.m.
New subject: [JBoss JIRA] Commented: (TEIID-1403) Salesforce connection password is displayed in plain text in Jopr
[
https://issues.jboss.org/browse/TEIID-1403?page=com.atlassian.jira.plugin...
]
John Doyle commented on TEIID-1403:
-----------------------------------
Just checked the connector and the ra.xml does say that the property is to be masked.
Salesforce connection password is displayed in plain text in Jopr
-----------------------------------------------------------------
Key: TEIID-1403
URL: https://issues.jboss.org/browse/TEIID-1403
Project: Teiid
Issue Type: Bug
Components: Jopr Plugin
Reporter: Paul Nittel
Assignee: Steven Hawkins
Attachments: OoopsYourPasswordIsShowing.png
I created a Salesforce model and connection and deployed them to a JBoss SOA instance.
While investigating a problem, I realized Jopr was showing the login info in plain text.
See the attached screenshot.
If we can mask this, that would be great. It's a concern otherwise.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
10:47 a.m.
New subject: [JBoss JIRA] Commented: (TEIID-1403) Salesforce connection password is displayed in plain text in Jopr
[
https://issues.jboss.org/browse/TEIID-1403?page=com.atlassian.jira.plugin...
]
Ted Jones commented on TEIID-1403:
----------------------------------
Agreed John... it appears the metadata is not being read for config properties by the
JBossAS plugin. Also there is no place to enter extended metadata in Emb Jopr if you were
to manually add a config property. I will log a BZ.
Salesforce connection password is displayed in plain text in Jopr
-----------------------------------------------------------------
Key: TEIID-1403
URL: https://issues.jboss.org/browse/TEIID-1403
Project: Teiid
Issue Type: Bug
Components: Jopr Plugin
Reporter: Paul Nittel
Assignee: Steven Hawkins
Attachments: OoopsYourPasswordIsShowing.png
I created a Salesforce model and connection and deployed them to a JBoss SOA instance.
While investigating a problem, I realized Jopr was showing the login info in plain text.
See the attached screenshot.
If we can mask this, that would be great. It's a concern otherwise.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
11:03 a.m.
New subject: [JBoss JIRA] Issue Comment Edited: (TEIID-1403) Salesforce connection password is displayed in plain text in Jopr
[
https://issues.jboss.org/browse/TEIID-1403?page=com.atlassian.jira.plugin...
]
Ted Jones edited comment on TEIID-1403 at 12/21/10 12:02 PM:
-------------------------------------------------------------
Agreed John... it appears the metadata is not being read for config properties by the
JBossAS plugin. Also there is no place to enter extended metadata in Emb Jopr if you were
to manually add a config property. I will log an Emb Jopr Jira,
was (Author: tejones):
Agreed John... it appears the metadata is not being read for config properties by the
JBossAS plugin. Also there is no place to enter extended metadata in Emb Jopr if you were
to manually add a config property. I will log a BZ.
Salesforce connection password is displayed in plain text in Jopr
-----------------------------------------------------------------
Key: TEIID-1403
URL: https://issues.jboss.org/browse/TEIID-1403
Project: Teiid
Issue Type: Bug
Components: Jopr Plugin
Reporter: Paul Nittel
Assignee: Steven Hawkins
Attachments: OoopsYourPasswordIsShowing.png
I created a Salesforce model and connection and deployed them to a JBoss SOA instance.
While investigating a problem, I realized Jopr was showing the login info in plain text.
See the attached screenshot.
If we can mask this, that would be great. It's a concern otherwise.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
11:05 a.m.
New subject: [JBoss JIRA] Commented: (TEIID-1403) Salesforce connection password is displayed in plain text in Jopr
[
https://issues.jboss.org/browse/TEIID-1403?page=com.atlassian.jira.plugin...
]
Ramesh Reddy commented on TEIID-1403:
-------------------------------------
Metadata from "ra.xml" and for the connection factory template are separate,
although for the "teiid" supplied connection factories and in the
"admin" provided templates Teiid reads the metadata from "ra.xml" and
build the connection factory template.
The issue seems to be in general with JOPR tool, check the passwords in a data source,
they are also exposed in clear text, so this JIRA need to elevated to JOPR level to hide
the clear text. In general JBoss suggests these steps
(http://community.jboss.org/docs/DOC-9703) for password encryption.
Salesforce connection password is displayed in plain text in Jopr
-----------------------------------------------------------------
Key: TEIID-1403
URL: https://issues.jboss.org/browse/TEIID-1403
Project: Teiid
Issue Type: Bug
Components: Jopr Plugin
Reporter: Paul Nittel
Assignee: Steven Hawkins
Attachments: OoopsYourPasswordIsShowing.png
I created a Salesforce model and connection and deployed them to a JBoss SOA instance.
While investigating a problem, I realized Jopr was showing the login info in plain text.
See the attached screenshot.
If we can mask this, that would be great. It's a concern otherwise.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
11:39 a.m.
New subject: [JBoss JIRA] Commented: (TEIID-1403) Salesforce connection password is displayed in plain text in Jopr
[
https://issues.jboss.org/browse/TEIID-1403?page=com.atlassian.jira.plugin...
]
Steven Hawkins commented on TEIID-1403:
---------------------------------------
Should this be moved to Jopr or just thrown out?
Salesforce connection password is displayed in plain text in Jopr
-----------------------------------------------------------------
Key: TEIID-1403
URL: https://issues.jboss.org/browse/TEIID-1403
Project: Teiid
Issue Type: Bug
Components: Jopr Plugin
Reporter: Paul Nittel
Assignee: Steven Hawkins
Attachments: OoopsYourPasswordIsShowing.png
I created a Salesforce model and connection and deployed them to a JBoss SOA instance.
While investigating a problem, I realized Jopr was showing the login info in plain text.
See the attached screenshot.
If we can mask this, that would be great. It's a concern otherwise.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
5028
days inactive
5030
days old
6 comments
5 participants
participants (5)
-
John Doyle (JIRA) -
Paul Nittel (JIRA)
-
Ramesh Reddy (JIRA)
-
Steven Hawkins (JIRA)
-
Ted Jones (JIRA)