-
Notifications
You must be signed in to change notification settings - Fork 23
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Password is exposed in EXPLAIN VIRTUAL for ORA connections #83
Labels
bug
Unwanted / harmful behavior
Comments
snehlsen
added a commit
that referenced
this issue
Feb 21, 2019
snehlsen
added a commit
that referenced
this issue
Feb 22, 2019
snehlsen
added a commit
that referenced
this issue
Feb 22, 2019
snehlsen
added a commit
that referenced
this issue
Feb 25, 2019
snehlsen
added a commit
that referenced
this issue
Feb 25, 2019
snehlsen
added a commit
that referenced
this issue
Feb 26, 2019
snehlsen
added a commit
that referenced
this issue
Feb 26, 2019
snehlsen
added a commit
that referenced
this issue
Feb 26, 2019
snehlsen
added a commit
that referenced
this issue
Feb 26, 2019
Merged
Fixed in v1.5.1 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
If a connection is used in a Virtual Schema that stores username and password, this information should not be exposed in the resulting pushdown SQL. This works fine for JDBC connections, but not for the special ORA connections:
Execution of
explain virtual select x from oravs.t;
returns the pushdown:IMPORT FROM ORA AT ora_connection USER 'foo' IDENTIFIED BY 'bar' STATEMENT 'SELECT * FROM "LS"."T"'
The text was updated successfully, but these errors were encountered: