Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-16801

PasswordObfuscator should not assume PASSWORD is the last item in the WITH clause

Agile BoardAttach filesAttach ScreenshotBulk Copy AttachmentsBulk Move AttachmentsVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    Description

      CASSANDRA-16669 introduced support for obfuscating passwords for audit log statements, but there are a few cases where the obfuscation logic can destroy some of the contents of the original/provided string.

      ex. This is perfectly valid...

      WITH LOGIN = false AND PASSWORD = 'bar' AND SUPERUSER = false
      

      ...but calling obfuscate() on it will produce...

      WITH LOGIN = false AND PASSWORD *******
      

      We should be able to create a reasonable RegEx and use String#replaceAll() to both simplify and correct PasswordObfuscator#obfuscate().

      Attachments

        Issue Links

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            bereng Berenguer Blasi Assign to me
            maedhroz Caleb Rackliffe
            Berenguer Blasi
            Benjamin Lerer, Ekaterina Dimitrova
            Votes:
            0 Vote for this issue
            Watchers:
            9 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment