Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
2.9.2
-
Patch Available
-
Unknown
Description
Sanitizes URI in debug messages that may otherwise reveal sensitive information.
Design note:
I opted to provide a specific method, URISupport.sanitizePath(String), instead of relaxing the match in URISupport.sanitizeUri(String). This is because formally an authority component in an URI is preceded by "//", which is not contained in the path part of the URI (see http://docs.oracle.com/javase/6/docs/api/java/net/URI.html).