[geeklog-cvs] geeklog: blank out OAuth consumer secrets when displaying the ro...
geeklog-cvs at lists.geeklog.net
geeklog-cvs at lists.geeklog.net
Sun Sep 25 16:24:34 EDT 2011
changeset 8425:0c05e3b0e0d5
url: http://project.geeklog.net/cgi-bin/hgwebdir.cgi/geeklog/rev/0c05e3b0e0d5
user: Dirk Haun <dirk at haun-online.de>
date: Sun Sep 25 22:24:26 2011 +0200
description:
blank out OAuth consumer secrets when displaying the rootdebug error screen to a non-Root user
diffstat:
public_html/lib-common.php | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diffs (12 lines):
diff -r a99838e61b4c -r 0c05e3b0e0d5 public_html/lib-common.php
--- a/public_html/lib-common.php Sun Sep 25 10:25:01 2011 +0200
+++ b/public_html/lib-common.php Sun Sep 25 22:24:26 2011 +0200
@@ -7103,7 +7103,7 @@
$blankField = false;
while(list($key, $value) = each($array)) {
$lkey = strtolower($key);
- if((strpos($lkey, 'pass') !== false) || (strpos($lkey, 'cookie') !== false)) {
+ if((strpos($lkey, 'pass') !== false) || (strpos($lkey, 'cookie') !== false) || (strpos($lkey, '_consumer_secret') !== false)) {
$blankField = true;
} else {
$blankField = $blank;
More information about the geeklog-cvs
mailing list