From f0a6cf610d8118ec7f88783343343e9099b9b95a Mon Sep 17 00:00:00 2001
From: Jean-Noël Rouvignac <jean-noel.rouvignac@forgerock.com>
Date: Wed, 10 Aug 2016 13:27:20 +0000
Subject: [PATCH] dsreplication - security: removed password to avoid accidental logging

---
 opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/EnableReplicationUserData.java |    2 +-
 opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/ReplicationUserData.java       |    3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/EnableReplicationUserData.java b/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/EnableReplicationUserData.java
index 8a771e0..3d9915f 100644
--- a/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/EnableReplicationUserData.java
+++ b/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/EnableReplicationUserData.java
@@ -208,10 +208,10 @@
     @Override
     public String toString()
     {
+      // do not add password to avoid accidental logging
       return getClass().getSimpleName()
           + "(hostPort=" + hostPort
           + ", bindDn=" + bindDn
-          + ", bindPassword=" + pwd
           + ", replicationPort=" + replicationPort
           + ", secureReplication=" + secureReplication
           + ", configureReplicationServer=" + configureReplicationServer
diff --git a/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/ReplicationUserData.java b/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/ReplicationUserData.java
index f7e1714..9344aed 100644
--- a/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/ReplicationUserData.java
+++ b/opendj-server-legacy/src/main/java/org/opends/server/tools/dsreplication/ReplicationUserData.java
@@ -109,6 +109,7 @@
 
   String fieldsToString()
   {
-    return "baseDNs=" + baseDNs + ", adminUid=" + adminUid + ", adminPwd=" + adminPwd;
+    // do not add password to avoid accidental logging
+    return "baseDNs=" + baseDNs + ", adminUid=" + adminUid;
   }
 }

--
Gitblit v1.10.0