[CAMEL-11269] URISupport sanitizeUri partial support for RAW() - ASF JIRA

Attach files

Attach Screenshot

Voters

Watch issue

Watchers

Create sub-task

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.19.0
Fix Version/s: 2.17.7, 2.18.4, 2.19.1, 2.20.0
Component/s: camel-core
Labels:
None

Patch Info:

Patch Available
Estimated Complexity:
Unknown
External issue URL:
https://issues.jboss.org/browse/ENTESB-6796

Description

The usage of & symbol in a password wrapped by RAW() function breaks the masking of the password.

The result of this is a partial leak of the clear text password.

See this example:

password=RAW(abc&SUFFIX) is translated into password=xxxxxx&SUFFIX

Attachments

Issue Links

Add Link

links to

GitHub Pull Request #1690

Delete this link

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Paolo Antinori

Reporter:: Paolo Antinori

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 12/May/17 14:07

Updated:: 13/May/17 08:26

Resolved:: 13/May/17 08:10

Agile

View on Board

URISupport sanitizeUri partial support for RAW()

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates

Agile

Slack

Issue deployment