diff options
| author | Jean-Philippe Lang <jp_lang@yahoo.fr> | 2007-12-01 22:03:45 +0000 |
|---|---|---|
| committer | Jean-Philippe Lang <jp_lang@yahoo.fr> | 2007-12-01 22:03:45 +0000 |
| commit | 457c9a8e727dff3167065954ef7269f2a6edb296 (patch) | |
| tree | 91f40ad15659673934131f1a7efeead86442796a /app/helpers/repositories_helper.rb | |
| parent | 3f2f7153a90272539e58016228db6c83b661feaf (diff) | |
| download | redmine-457c9a8e727dff3167065954ef7269f2a6edb296.tar.gz redmine-457c9a8e727dff3167065954ef7269f2a6edb296.zip | |
Fixed: svn or ldap password can be found in clear text in the html source in editing mode.
git-svn-id: http://redmine.rubyforge.org/svn/trunk@942 e93f8b46-1217-0410-a6f0-8f06a7374b81
Diffstat (limited to 'app/helpers/repositories_helper.rb')
| -rw-r--r-- | app/helpers/repositories_helper.rb | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/app/helpers/repositories_helper.rb b/app/helpers/repositories_helper.rb index 41218fa79..333b30b1c 100644 --- a/app/helpers/repositories_helper.rb +++ b/app/helpers/repositories_helper.rb @@ -62,7 +62,10 @@ module RepositoriesHelper content_tag('p', form.text_field(:url, :size => 60, :required => true, :disabled => (repository && !repository.root_url.blank?)) + '<br />(http://, https://, svn://, file:///)') + content_tag('p', form.text_field(:login, :size => 30)) + - content_tag('p', form.password_field(:password, :size => 30)) + content_tag('p', form.password_field(:password, :size => 30, :name => 'ignore', + :value => ((repository.new_record? || repository.password.blank?) ? '' : ('x'*15)), + :onfocus => "this.value=''; this.name='repository[password]';", + :onchange => "this.name='repository[password]';")) end def darcs_field_tags(form, repository) |