Uploaded image for project: 'Camel'
  1. Camel
  2. CAMEL-12480

HttpOperationFailedException exposes password when using basic auth with user:password@host notation

Agile BoardAttach filesAttach ScreenshotVotersStop watchingWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Novice

    Description

      Simplified route:

      from(inUri)
                  .toD("http4://user:password@host:port/path");
      

      When a HttpOperationFailedException occurs the message contains the unmasked password e.g. "HTTP operation failed invoking http://user:password@host:port/path ..."

      I guess Camel should mask the password.

      Attachments

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            pascalschumacher Pascal Schumacher
            pascalschumacher Pascal Schumacher
            Votes:
            0 Vote for this issue
            Watchers:
            3 Stop watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment