Logging user password in plaintext to console

ianmartorell / meteor-accounts-ui-bootstrap-3

accounts-ui package with Bootstrap 3 and localization support

150 stars 109 forks source link

Logging user password in plaintext to console #114

Closed saads closed 9 years ago

saads commented 9 years ago

After creating a new user in the UI I noticed that the password I typed in was logged to the console and appeared in plain text. This probably shouldn't happen for security reasons?

In file login_buttons_dropdown.js there is a call to console.log(options) on line 590.

screenshot from 2015-04-27 00 25 45

ianmartorell commented 9 years ago

The password is not being sent to the server in plain text, but you're totally right. I must've left it there from debugging accidentally