Don't log http auth details by default.

This is a security risk when people distribute logs for debug purposes. If necessary the information can be retrieved via config console commands. Relates to http://opensimulator.org/mantis/view.php?id=7501
author: Justin Clark-Casey (justincc) 2015-03-16 23:48:16 +0000
committer: Justin Clark-Casey (justincc) 2015-03-16 23:48:16 +0000
commit: 5b31bb9cb918491b599c89ef24f1833587bdef0f (patch)
tree: cb190e925b794ea718e90d366fdd5133c730eba6
parent: Fix XBakes simulator-side authentication regression failure (diff)
download: opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.zip
opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.tar.gz
opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.tar.bz2
opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.tar.xz
1 files changed, 2 insertions, 2 deletions
diff --git a/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs b/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs
index b20f8f5..512ac4f 100644
--- a/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs
+++ b/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs
@@ -38,7 +38,7 @@ namespace OpenSim.Framework.ServiceAuth
 {
    public class BasicHttpAuthentication : IServiceAuth
    {
-        private static readonly ILog m_log = LogManager.GetLogger(MethodBase.GetCurrentMethod().DeclaringType);
+//        private static readonly ILog m_log = LogManager.GetLogger(MethodBase.GetCurrentMethod().DeclaringType);
        public string Name { get { return "BasicHttp"; } }
@@ -61,7 +61,7 @@ namespace OpenSim.Framework.ServiceAuth
            byte[] encData_byte = Util.UTF8.GetBytes(str);
            m_CredentialsB64 = Convert.ToBase64String(encData_byte);
-            m_log.DebugFormat("[HTTP BASIC AUTH]: {0} {1} [{2}]", m_Username, m_Password, section);
+//            m_log.DebugFormat("[HTTP BASIC AUTH]: {0} {1} [{2}]", m_Username, m_Password, section);
        }
        public void AddAuthorization(NameValueCollection headers)
author	Justin Clark-Casey (justincc)	2015-03-16 23:48:16 +0000
committer	Justin Clark-Casey (justincc)	2015-03-16 23:48:16 +0000
commit	5b31bb9cb918491b599c89ef24f1833587bdef0f (patch)
tree	cb190e925b794ea718e90d366fdd5133c730eba6
parent	Fix XBakes simulator-side authentication regression failure (diff)
download	opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.zip opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.tar.gz opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.tar.bz2 opensim-SC-5b31bb9cb918491b599c89ef24f1833587bdef0f.tar.xz

diff --git a/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs b/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs index b20f8f5..512ac4f 100644 --- a/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs +++ b/OpenSim/Framework/ServiceAuth/BasicHttpAuthentication.cs
@@ -38,7 +38,7 @@ namespace OpenSim.Framework.ServiceAuth
38	{	38	{
39	public class BasicHttpAuthentication : IServiceAuth	39	public class BasicHttpAuthentication : IServiceAuth
40	{	40	{
41	private static readonly ILog m_log = LogManager.GetLogger(MethodBase.GetCurrentMethod().DeclaringType);	41	// private static readonly ILog m_log = LogManager.GetLogger(MethodBase.GetCurrentMethod().DeclaringType);
42		42
43	public string Name { get { return "BasicHttp"; } }	43	public string Name { get { return "BasicHttp"; } }
44		44
@@ -61,7 +61,7 @@ namespace OpenSim.Framework.ServiceAuth
61	byte[] encData_byte = Util.UTF8.GetBytes(str);	61	byte[] encData_byte = Util.UTF8.GetBytes(str);
62		62
63	m_CredentialsB64 = Convert.ToBase64String(encData_byte);	63	m_CredentialsB64 = Convert.ToBase64String(encData_byte);
64	m_log.DebugFormat("[HTTP BASIC AUTH]: {0} {1} [{2}]", m_Username, m_Password, section);	64	// m_log.DebugFormat("[HTTP BASIC AUTH]: {0} {1} [{2}]", m_Username, m_Password, section);
65	}	65	}
66		66
67	public void AddAuthorization(NameValueCollection headers)	67	public void AddAuthorization(NameValueCollection headers)