Author: jacopoc
Date: Mon Jul 7 07:42:15 2014
New Revision: 1608355
URL:
http://svn.apache.org/r1608355Log:
Removed useless logInfo statement that was causing the user password to be stored in the log files. Thanks to Grégory Draperi for the report.
Modified:
ofbiz/trunk/framework/common/src/org/ofbiz/common/login/LoginServices.java
Modified: ofbiz/trunk/framework/common/src/org/ofbiz/common/login/LoginServices.java
URL:
http://svn.apache.org/viewvc/ofbiz/trunk/framework/common/src/org/ofbiz/common/login/LoginServices.java?rev=1608355&r1=1608354&r2=1608355&view=diff==============================================================================
--- ofbiz/trunk/framework/common/src/org/ofbiz/common/login/LoginServices.java (original)
+++ ofbiz/trunk/framework/common/src/org/ofbiz/common/login/LoginServices.java Mon Jul 7 07:42:15 2014
@@ -921,7 +921,6 @@ public class LoginServices {
passwordChangeHistoryLimit = 0;
}
Debug.logInfo(" password.change.history.limit is set to " + passwordChangeHistoryLimit, module);
- Debug.logInfo(" userLogin is set to " + userLogin, module);
if (passwordChangeHistoryLimit > 0 && userLogin != null) {
Debug.logInfo(" checkNewPassword Checking if user is tyring to use old password " + passwordChangeHistoryLimit, module);
Delegator delegator = userLogin.getDelegator();
Locked
