Security tips - Githubissues

globocom / tornado-alf

Tornado Oauth 2 client

MIT License

17 stars 10 forks source link

Closed wpjunior closed 9 years ago

wpjunior commented 9 years ago

Authorization header is visible in logs, a malicious user can use this header to make a unauthorized requests.

wpjunior commented 9 years ago

ping @scorphus

scorphus commented 9 years ago

Fixed as of 4b4a261.