-
Notifications
You must be signed in to change notification settings - Fork 1.1k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Mask password fields of inputs returned by the REST API. (#5432)
* Mask password fields of inputs returned by the REST API. Before this change, input details returned by the REST API would contain all configuration fields without any modification. This implies that password fields are also contained using their original value, showing configured password for inputs in clear text. This change now iterates over configuration fields checking for the presence of password fields and replace their content with `<password set>` instead of the original value if they are not empty. Fixes #5408. * Adding test for actual resource method, including license headers. * Adding test for complete input list retrievel. * Adding guard clause for null parameters. * Using locales for toLowerCase. * Handling null values in map. * Do not mask passwords in input config for users with edit permission. If a user contains the required permission to edit an input, passwords in the input's config are not masked. This is prevented so the input edit dialog still functions in the same way as before. * Adding/adapting tests. (Cherry-Pick from a562a33)
- Loading branch information
1 parent
81cc4c7
commit e0e05c1
Showing
3 changed files
with
374 additions
and
2 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.