Uploaded image for project: 'Sourcetree for Windows'
  1. Sourcetree for Windows
  2. SRCTREEWIN-8188

Repo password on display for the world to see.

    XMLWordPrintable

Details

    • Bug
    • Resolution: Resolved Locally
    • Highest
    • None
    • 2.3.5.0
    • Git

    • Windows 10 Pro v.1607, Standalone version, JDK 1.8.0_151

    • Severity 2 - Major

    Description

      I just noticed that my machine user name and password are on display above the commit dialog. Since this job site uses single sign on for everything, that's my username and password for the entire system here.

      I have three different repos loaded in Sourcetree. Because of single sign on, that is also my user name and password for the one of the repos. The other two are hosted on Github and use an SSH key. However, switching between repos doesn't affect the display of my user credentials.

      I don't remember seeing this before. The only thing I can think of that might have changed something is my password is about to auto-expire on the system. Yesterday I set a new password. Today I started up Sourcetree for the first time after setting a new password and had to re-enter my credentials for the company repo.

      Attachments

        1. credentials.png
          credentials.png
          8 kB
        2. sourcetree.png
          sourcetree.png
          43 kB
        3. sourcetree2.png
          sourcetree2.png
          24 kB

        Activity

          People

            Unassigned Unassigned
            1c16e56e9df1 Sean Hammon
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: