diff options
| author | Jean-Philippe Lang <jp_lang@yahoo.fr> | 2007-12-01 22:03:45 +0000 |
|---|---|---|
| committer | Jean-Philippe Lang <jp_lang@yahoo.fr> | 2007-12-01 22:03:45 +0000 |
| commit | 457c9a8e727dff3167065954ef7269f2a6edb296 (patch) | |
| tree | 91f40ad15659673934131f1a7efeead86442796a /app/views/auth_sources | |
| parent | 3f2f7153a90272539e58016228db6c83b661feaf (diff) | |
| download | redmine-457c9a8e727dff3167065954ef7269f2a6edb296.tar.gz redmine-457c9a8e727dff3167065954ef7269f2a6edb296.zip | |
Fixed: svn or ldap password can be found in clear text in the html source in editing mode.
git-svn-id: http://redmine.rubyforge.org/svn/trunk@942 e93f8b46-1217-0410-a6f0-8f06a7374b81
Diffstat (limited to 'app/views/auth_sources')
| -rw-r--r-- | app/views/auth_sources/_form.rhtml | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/app/views/auth_sources/_form.rhtml b/app/views/auth_sources/_form.rhtml index 24d2913e3..3d148c11f 100644 --- a/app/views/auth_sources/_form.rhtml +++ b/app/views/auth_sources/_form.rhtml @@ -15,7 +15,10 @@ <%= text_field 'auth_source', 'account' %></p> <p><label for="auth_source_account_password"><%=l(:field_password)%></label> -<%= password_field 'auth_source', 'account_password' %></p> +<%= password_field 'auth_source', 'account_password', :name => 'ignore', + :value => ((@auth_source.new_record? || @auth_source.account_password.blank?) ? '' : ('x'*15)), + :onfocus => "this.value=''; this.name='auth_source[account_password]';", + :onchange => "this.name='auth_source[account_password]';" %></p> <p><label for="auth_source_base_dn"><%=l(:field_base_dn)%> <span class="required">*</span></label> <%= text_field 'auth_source', 'base_dn', :size => 60 %></p> |