Logs oauth tokens to console
Bug #723297 reported by
dobey
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
libubuntuone | Status tracked in Trunk | |||||
Stable-0-4 |
Fix Released
|
High
|
dobey | |||
Stable-lucid |
Won't Fix
|
Undecided
|
Unassigned | |||
Trunk |
Fix Released
|
High
|
dobey | |||
libubuntuone (Ubuntu) |
Fix Released
|
High
|
dobey | |||
Lucid |
Won't Fix
|
High
|
Unassigned | |||
Maverick |
Invalid
|
High
|
Unassigned | |||
Natty |
Fix Released
|
High
|
dobey |
Bug Description
libubuntuone is printing the URL to console when a navigation is requested through webkit. Sometimes, this url includes oauth authorization information, which ends up on the console. This is not good.
The oauth code is also printing tokens directly sometimes. We really should not be enabling this behavior by default.
Related branches
lp:~dobey/libubuntuone/print-no-tokens
- Eric Casteleijn (community): Approve
- Roberto Alsina (community): Approve
-
Diff: 24 lines (+0/-3)2 files modifiedconfigure.ac (+0/-1)
libubuntuone/u1-music-store.c (+0/-2)
Changed in libubuntuone: | |
assignee: | nobody → Rodney Dawes (dobey) |
importance: | Undecided → High |
status: | New → In Progress |
Changed in libubuntuone (Ubuntu Lucid): | |
importance: | Undecided → High |
Changed in libubuntuone (Ubuntu Maverick): | |
importance: | Undecided → High |
Changed in libubuntuone (Ubuntu Natty): | |
importance: | Undecided → High |
Changed in libubuntuone (Ubuntu Natty): | |
assignee: | nobody → Rodney Dawes (dobey) |
status: | New → In Progress |
Changed in libubuntuone (Ubuntu Lucid): | |
assignee: | nobody → Rodney Dawes (dobey) |
Changed in libubuntuone (Ubuntu Maverick): | |
assignee: | nobody → Rodney Dawes (dobey) |
Changed in libubuntuone (Ubuntu Lucid): | |
assignee: | Rodney Dawes (dobey) → nobody |
status: | New → Won't Fix |
Changed in libubuntuone (Ubuntu Maverick): | |
assignee: | Rodney Dawes (dobey) → nobody |
To post a comment you must log in.
This bug was fixed in the package libubuntuone - 0.9.0-0ubuntu1
---------------
libubuntuone (0.9.0-0ubuntu1) natty; urgency=low
* New upstream release.
- Don't log oauth information to console (LP: #723297)
-- Rodney Dawes <email address hidden> Wed, 09 Mar 2011 20:13:12 -0500