[jboss-cvs] Picketbox SVN: r382 - trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Fri Feb 8 15:14:30 EST 2013 

Author: pskopek at redhat.com
Date: 2013-02-08 15:14:30 -0500 (Fri, 08 Feb 2013)
New Revision: 382

Modified:
   trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapExtLoginModule.java
   trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapLoginModule.java
Log:
[JBPAPP6-1704] Changing default of allow empty passwords to false.

Modified: trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapExtLoginModule.java
===================================================================
--- trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapExtLoginModule.java	2013-02-07 16:45:33 UTC (rev 381)
+++ trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapExtLoginModule.java	2013-02-08 20:14:30 UTC (rev 382)
@@ -322,7 +322,7 @@
          if (inputPassword.length() == 0)
          {
             // Check for an allowEmptyPasswords option
-            boolean allowEmptyPasswords = true;
+            boolean allowEmptyPasswords = false;
             String flag = (String) options.get(ALLOW_EMPTY_PASSWORDS);
             if (flag != null)
                allowEmptyPasswords = Boolean.valueOf(flag).booleanValue();

Modified: trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapLoginModule.java
===================================================================
--- trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapLoginModule.java	2013-02-07 16:45:33 UTC (rev 381)
+++ trunk/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapLoginModule.java	2013-02-08 20:14:30 UTC (rev 382)
@@ -271,7 +271,7 @@
          if (inputPassword.length() == 0)
          {
             // Check for an allowEmptyPasswords option
-            boolean allowEmptyPasswords = true;
+            boolean allowEmptyPasswords = false;
             String flag = (String) options.get(ALLOW_EMPTY_PASSWORDS);
             if (flag != null)
                allowEmptyPasswords = Boolean.valueOf(flag).booleanValue();

More information about the jboss-cvs-commits mailing list