[SECURITY] Credentials exposed in public URLs
authorAndreas Wolf <andreas.wolf@typo3.org>
Wed, 24 Jun 2015 08:19:01 +0000 (10:19 +0200)
committerAndreas Wolf <andreas.wolf@typo3.org>
Wed, 24 Jun 2015 08:19:02 +0000 (10:19 +0200)
commit62237b94952ee20cd2cedc7805bc90f0efe7e5c4
treeb5e1054dfd221070af488418d13a627ba51769e0
parentc657de856a9ef4dfc7b367041352e0e5faff79b5
[SECURITY] Credentials exposed in public URLs

The storage credentials must not be included by default, as they might
also provide write-access to the storage. There should be an option to
integrate read-only credentials to get a file, or have a special base
URL for the public URLs.
Classes/Driver/WebDavDriver.php