[jboss-jira] [JBoss JIRA] (SECURITY-909) LdapLoginModule code has unnecessary BIND_CREDENTIAL constant
Peter Skopek (JIRA)
issues at jboss.org
Tue Sep 15 10:28:00 EDT 2015
[ https://issues.jboss.org/browse/SECURITY-909?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13108782#comment-13108782 ]
Peter Skopek commented on SECURITY-909:
---------------------------------------
PR: https://github.com/picketbox/picketbox/pull/48
> LdapLoginModule code has unnecessary BIND_CREDENTIAL constant
> -------------------------------------------------------------
>
> Key: SECURITY-909
> URL: https://issues.jboss.org/browse/SECURITY-909
> Project: PicketBox
> Issue Type: Bug
> Components: JBossSX
> Reporter: Josef Cacek
> Assignee: Peter Skopek
> Priority: Minor
>
> The {{org.jboss.security.auth.spi.LdapLoginModule}} class contains unnecessary constant
> {code}
> private static final String BIND_CREDENTIAL = "bindCredential";
> {code}
> It's only used in {{traceLDAPEnv}} method which is responsible for masking passwords in module options. The "bindCredential" is not a valid option in this login module.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list