[jboss-jira] [JBoss JIRA] (SECURITY-909) LdapLoginModule code has unnecessary BIND_CREDENTIAL constant
Darran Lofthouse (JIRA)
issues at jboss.org
Wed Sep 2 15:20:05 EDT 2015
[ https://issues.jboss.org/browse/SECURITY-909?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Darran Lofthouse reassigned SECURITY-909:
-----------------------------------------
Assignee: Stefan Guilhen (was: Darran Lofthouse)
> LdapLoginModule code has unnecessary BIND_CREDENTIAL constant
> -------------------------------------------------------------
>
> Key: SECURITY-909
> URL: https://issues.jboss.org/browse/SECURITY-909
> Project: PicketBox
> Issue Type: Bug
> Components: JBossSX
> Reporter: Josef Cacek
> Assignee: Stefan Guilhen
> Priority: Minor
>
> The {{org.jboss.security.auth.spi.LdapLoginModule}} class contains unnecessary constant
> {code}
> private static final String BIND_CREDENTIAL = "bindCredential";
> {code}
> It's only used in {{traceLDAPEnv}} method which is responsible for masking passwords in module options. The "bindCredential" is not a valid option in this login module.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
More information about the jboss-jira
mailing list