S3 Plugin credentials stored insecurely

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Critical
    • Component/s: s3-plugin
    • None

      S3 Bucket credential keys (both access and secret) are stored/managed in such a way that anyone with access to the config page can easily retreive them (easy as in view-source).

      Once saved, they should not be retrievable through the web interface.

            Assignee:
            Unassigned
            Reporter:
            Theral Mackey
            Votes:
            1 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: