<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 09:06:02 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[KAFKA-289] hide security info of password of mongo in http response</title>
                <link>https://jira.mongodb.org/browse/KAFKA-289</link>
                <project id="16285" key="KAFKA">Kafka Connector</project>
                    <description>&lt;p&gt;I can easily get the sensitive information of the mongo from http response below&lt;/p&gt;
&lt;p/&gt;
&lt;div id=&quot;syntaxplugin&quot; class=&quot;syntaxplugin&quot; style=&quot;border: 1px dashed #bbb; border-radius: 5px !important; overflow: auto; max-height: 30em;&quot;&gt;
&lt;table cellspacing=&quot;0&quot; cellpadding=&quot;0&quot; border=&quot;0&quot; width=&quot;100%&quot; style=&quot;font-size: 1em; line-height: 1.4em !important; font-weight: normal; font-style: normal; color: black;&quot;&gt;
		&lt;tbody &gt;
				&lt;tr id=&quot;syntaxplugin_code_and_gutter&quot;&gt;
						&lt;td  style=&quot; line-height: 1.4em !important; padding: 0em; vertical-align: top;&quot;&gt;
					&lt;pre style=&quot;font-size: 1em; margin: 0 10px;  margin-top: 10px;   margin-bottom: 10px;  width: auto; padding: 0;&quot;&gt;&lt;span style=&quot;color: black; font-family: &apos;Consolas&apos;, &apos;Bitstream Vera Sans Mono&apos;, &apos;Courier New&apos;, Courier, monospace !important;&quot;&gt;curl -X GET http:&lt;/span&gt;&lt;span style=&quot;color: #008200; font-family: &apos;Consolas&apos;, &apos;Bitstream Vera Sans Mono&apos;, &apos;Courier New&apos;, Courier, monospace !important;&quot;&gt;//localhost:8083/connectors/test&lt;/span&gt;&lt;span style=&quot;color: black; font-family: &apos;Consolas&apos;, &apos;Bitstream Vera Sans Mono&apos;, &apos;Courier New&apos;, Courier, monospace !important;&quot;&gt;&lt;/span&gt;&lt;/pre&gt;
			&lt;/td&gt;
		&lt;/tr&gt;
			&lt;/tbody&gt;
&lt;/table&gt;
&lt;/div&gt;
&lt;p/&gt;

&lt;p&gt;I believe it is not secure to return the sensitive information without encrypted. &lt;br/&gt;
is there a way to hide the sensitive information ?&lt;/p&gt;</description>
                <environment></environment>
        <key id="1978216">KAFKA-289</key>
            <summary>hide security info of password of mongo in http response</summary>
                <type id="4" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14710&amp;avatarType=issuetype">Improvement</type>
                                            <priority id="2" iconUrl="https://jira.mongodb.org/images/icons/priorities/critical.svg">Critical - P2</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="13203">Gone away</resolution>
                                        <assignee username="robert.walters@mongodb.com">Robert Walters</assignee>
                                    <reporter username="zhoujiazhiwork@163.com">jiazhi zhou</reporter>
                        <labels>
                            <label>external-user</label>
                            <label>web-serivce</label>
                    </labels>
                <created>Mon, 7 Feb 2022 06:42:00 +0000</created>
                <updated>Fri, 27 Oct 2023 19:45:04 +0000</updated>
                            <resolved>Mon, 14 Mar 2022 13:37:05 +0000</resolved>
                                    <version>1.6.1</version>
                                                    <component>Configuration</component>
                                        <votes>0</votes>
                                    <watches>3</watches>
                                                                                                                <comments>
                            <comment id="4409775" author="dbeng-pm-bot" created="Mon, 14 Mar 2022 13:37:07 +0000"  >&lt;p&gt;There hasn&apos;t been any recent activity on this ticket, so we&apos;re resolving it. Thanks for reaching out! Please feel free to comment on this if you&apos;re able to provide more information.&lt;/p&gt;</comment>
                            <comment id="4355125" author="JIRAUSER1269667" created="Tue, 15 Feb 2022 02:46:46 +0000"  >&lt;p&gt; seems not working &lt;br/&gt;
 &lt;span class=&quot;image-wrap&quot; style=&quot;&quot;&gt;&lt;a id=&quot;360528_thumb&quot; href=&quot;https://jira.mongodb.org/secure/attachment/360528/360528_screenshot-2.png&quot; title=&quot;screenshot-2.png&quot; file-preview-type=&quot;image&quot; file-preview-id=&quot;360528&quot; file-preview-title=&quot;screenshot-2.png&quot;&gt;&lt;img src=&quot;https://jira.mongodb.org/secure/thumbnail/360528/_thumb_360528.png&quot; style=&quot;border: 0px solid black&quot; role=&quot;presentation&quot;/&gt;&lt;/a&gt;&lt;/span&gt; &lt;br/&gt;
 &lt;span class=&quot;image-wrap&quot; style=&quot;&quot;&gt;&lt;a id=&quot;360529_thumb&quot; href=&quot;https://jira.mongodb.org/secure/attachment/360529/360529_screenshot-3.png&quot; title=&quot;screenshot-3.png&quot; file-preview-type=&quot;image&quot; file-preview-id=&quot;360529&quot; file-preview-title=&quot;screenshot-3.png&quot;&gt;&lt;img src=&quot;https://jira.mongodb.org/secure/thumbnail/360529/_thumb_360529.png&quot; style=&quot;border: 0px solid black&quot; role=&quot;presentation&quot;/&gt;&lt;/a&gt;&lt;/span&gt; &lt;/p&gt;</comment>
                            <comment id="4346716" author="robert.walters" created="Wed, 9 Feb 2022 22:53:22 +0000"  >&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=zhoujiazhiwork%40163.com&quot; class=&quot;user-hover&quot; rel=&quot;zhoujiazhiwork@163.com&quot;&gt;zhoujiazhiwork@163.com&lt;/a&gt; Load Secrets&lt;br/&gt;
To avoid storing your authentication secrets as plain text in your&#160;&lt;tt&gt;connection.uri&lt;/tt&gt;&#160;setting, load your secrets from a secure location as your connector starts. To learn how to load your secrets as your connector starts, see&#160;&lt;a href=&quot;https://docs.confluent.io/platform/current/connect/security.html#externalizing-secrets&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;the Externalize Secrets guide from Confluent&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;&#160;&lt;/p&gt;</comment>
                    </comments>
                    <attachments>
                            <attachment id="360527" name="screenshot-1.png" size="7698" author="JIRAUSER1264423" created="Tue, 15 Feb 2022 02:44:36 +0000"/>
                            <attachment id="360528" name="screenshot-2.png" size="6134" author="JIRAUSER1264423" created="Tue, 15 Feb 2022 02:45:56 +0000"/>
                            <attachment id="360529" name="screenshot-3.png" size="23823" author="JIRAUSER1264423" created="Tue, 15 Feb 2022 02:46:24 +0000"/>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|i02dzz:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                </customfields>
    </item>
</channel>
</rss>