DATAMONGO-601 - Fixed exposing password by MongoDbUtils.

odrotbohm · odrotbohm · commit c807b2abcfcf · 2013-01-29T13:16:06.000+01:00
MongoDbUtils is now not exposing the plain password in the exception message piped into CannotGetMongoDbConnectionException but uses the newly introduced toString() method of UserCredentials (see DATACMNS-275).
diff --git a/spring-data-mongodb/src/main/java/org/springframework/data/mongodb/core/MongoDbUtils.java b/spring-data-mongodb/src/main/java/org/springframework/data/mongodb/core/MongoDbUtils.java
@@ -112,8 +112,8 @@ private static DB doGetDB(Mongo mongo, String databaseName, UserCredentials cred
 				String password = credentials.hasPassword() ? credentials.getPassword() : null;
 
 				if (!db.authenticate(username, password == null ? null : password.toCharArray())) {
-					throw new CannotGetMongoDbConnectionException("Failed to authenticate to database [" + databaseName
-							+ "], username = [" + username + "], password = [" + password + "]", databaseName, credentials);
+					throw new CannotGetMongoDbConnectionException("Failed to authenticate to database [" + databaseName + "], "
+							+ credentials.toString(), databaseName, credentials);
 				}
 			}
 		}

Original file line number	Diff line number	Diff line change
`@@ -112,8 +112,8 @@ private static DB doGetDB(Mongo mongo, String databaseName, UserCredentials cred`
`112`	`112`	`String password = credentials.hasPassword() ? credentials.getPassword() : null;`
`113`	`113`
`114`	`114`	`if (!db.authenticate(username, password == null ? null : password.toCharArray())) {`
`115`		`- throw new CannotGetMongoDbConnectionException("Failed to authenticate to database [" + databaseName`
`116`		`- + "], username = [" + username + "], password = [" + password + "]", databaseName, credentials);`
	`115`	`+ throw new CannotGetMongoDbConnectionException("Failed to authenticate to database [" + databaseName + "], "`
	`116`	`+ + credentials.toString(), databaseName, credentials);`
`117`	`117`	`}`
`118`	`118`	`}`
`119`	`119`	`}`