git://git.onelab.eu / plcapi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f00b7e4) | patch
Right now all passwords that showed up via AddPerson/UpdatePerson are
authorMarc Fiuczynski <mef@cs.princeton.edu>
Fri, 30 Oct 2009 22:08:52 +0000 (22:08 +0000)
committerMarc Fiuczynski <mef@cs.princeton.edu>
Fri, 30 Oct 2009 22:08:52 +0000 (22:08 +0000)
commit74b7aaa4c9667962f707d5747977f317f8991498
tree7344bf0b2090983dd103209526e988b34fa5bc26tree | snapshot
parentf00b7e42b9c563871badf4c4721d230847ee768acommit | diff
Right now all passwords that showed up via AddPerson/UpdatePerson are
in the events table.  This is not good from a security perspective.

I've adjusted the log() method to redact passwords, auth string, and
session values in call API method arguments.
PLC/Method.py diff | blob | history
plcapi