activemq-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF GitHub Bot (JIRA)" <>
Subject [jira] [Commented] (ARTEMIS-1600) Support masked passwords in bootstrap.xm and login.config
Date Thu, 11 Jan 2018 18:33:00 GMT


ASF GitHub Bot commented on ARTEMIS-1600:

Github user jbertram commented on the issue:
    Aside from the failing tests this looks OK.  
    That said, I would love to see us move all our password masking to use the "ENC(<hash>)"
syntax instead of using boolean "mask-password" attributes everywhere if possible.  This is
done for the properties login module and it's very clean.  If the text follows the pattern
then it should be treated as masked otherwise it shouldn't.

> Support masked passwords in bootstrap.xm and login.config
> ---------------------------------------------------------
>                 Key: ARTEMIS-1600
>                 URL:
>             Project: ActiveMQ Artemis
>          Issue Type: Improvement
>          Components: Broker, Web Console
>    Affects Versions: 2.4.0
>            Reporter: Howard Gao
>            Assignee: Howard Gao
>             Fix For: 2.5.0
> We provide a feature to mask passwords in the configuration files. 
> However, passwords in the bootstrap.xml (when the console is 
> secured with HTTPS) cannot be masked. This enhancement has 
> been opened to allow passwords in the bootstrap.xml to be masked
> using the built-in masking feature provided by the broker.
> Also the LDAPLoginModule configuration (in login.config) has a 
> connection password attribute that also needs this mask support.

This message was sent by Atlassian JIRA

View raw message