Ignore:
Timestamp:
09/02/19 20:11:12 (5 years ago)
Author:
nanardon
Message:

Ensure users cannot retrieve password, even encrypted

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/LATMOS-Accounts/lib/LATMOS/Accounts/Acls.pm

    r2278 r2282  
    2929        }, $class 
    3030    ); 
    31     if ($file) { 
    32         $acls->read_acl_file($file) or return; 
    33     } 
    3431 
    3532    # Default ACLS: 
    36     $acls->add( '*.log', [ '$uid: read', '*: deny' ] ); 
     33#    $acls->add( '*.log', [ '$uid: read', '*: deny' ] ); 
    3734    $acls->add( 
    3835        'user.{userPasswd,userPassword,encryptedPassword,oldPassword}', 
    3936        [ '$uid: write', '*: deny' ], 
    4037    ); 
     38 
     39    if ($file) { 
     40        $acls->read_acl_file($file) or return; 
     41    } 
     42 
    4143    $acls 
    4244} 
Note: See TracChangeset for help on using the changeset viewer.