Details
-
Bug
-
Resolution: Fixed
-
Medium
-
6.1.7, 6.4.2
-
None
-
6.01
-
3.8
-
Description
Example steps to reproduce:
Example 1:
- enable HTTP Access Logging and the HTTP dump log
- Change Password
- in the atlassian-jira-http-dump.log , the user's credential will be in the log as text
Example 2:
- enable HTTP Access Logging and the HTTP dump log
- exit Administrations menu/logout
- go to any Administrations menu
- Websudo is prompt
- in the atlassian-jira-http-dump.log, the user's credential will be in the log as text