Clean provided password

author Mathieu Baudier <mbaudier@argeo.org>

Fri, 21 Feb 2014 14:00:53 +0000 (14:00 +0000)

committer Mathieu Baudier <mbaudier@argeo.org>

Fri, 21 Feb 2014 14:00:53 +0000 (14:00 +0000)
author Mathieu Baudier <mbaudier@argeo.org>
Fri, 21 Feb 2014 14:00:53 +0000 (14:00 +0000)
committer Mathieu Baudier <mbaudier@argeo.org>
Fri, 21 Feb 2014 14:00:53 +0000 (14:00 +0000)
diff --git a/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/core/ConsoleCallbackHandler.java b/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/core/ConsoleCallbackHandler.java

index 3bd4b57f0a0792c1d8f717995959245de4ea671f..faa81b004aee9bfb7335b44463abfe87b273fb4f 100644 (file)
--- a/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/core/ConsoleCallbackHandler.java
+++ b/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/core/ConsoleCallbackHandler.java
@@ -3,6 +3,7 @@ package org.argeo.security.core;
  import java.io.Console;
  import java.io.IOException;
  import java.io.PrintWriter;
+import java.util.Arrays;
  import java.util.Locale;
  
  import javax.security.auth.callback.Callback;
@@ -47,6 +48,7 @@ public class ConsoleCallbackHandler implements CallbackHandler {
                                 writer.write(callback.getPrompt());
                                 char[] answer = console.readPassword();
                                 callback.setPassword(answer);
+                               Arrays.fill(answer, ' ');
                         } else if (callbacks[i] instanceof LocaleCallback) {
                                 LocaleCallback callback = (LocaleCallback) callbacks[i];
                                 writer.write(callback.getPrompt());
author	Mathieu Baudier <mbaudier@argeo.org>
	Fri, 21 Feb 2014 14:00:53 +0000 (14:00 +0000)
committer	Mathieu Baudier <mbaudier@argeo.org>
	Fri, 21 Feb 2014 14:00:53 +0000 (14:00 +0000)