-
Notifications
You must be signed in to change notification settings - Fork 3.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PasswordProvider abstraction could be abused for races #6666
Comments
|
What's the race that could be abused? |
|
I would suggest to replace it with an abstraction like this:
Where the implementation is responsible for making the values returned in the list to be consistent. On the user side, |
#7400 is good use case I would prefer to remove "Abstract" from interface name and return map instead of list so as not to depend on ordering of elements for their meaning... something like (if that works)
|
This issue has been marked as stale due to 280 days of inactivity. |
Some classes that have multiple
PasswordProvider
fields could inherently be subject to races:SSLClientConfig
MySQLConnectorConfig
ClientSSLContextBuilder
TLSServerConfig
BasicHTTPAuthenticator
BasicAuthDBConfig
AWSCredentialsConfig
The text was updated successfully, but these errors were encountered: