Versions Compared

Old Version 1

changes.mady.by.user Kiuwan Editor User

Saved on

compared with

New Version Current

changes.mady.by.user Wara Hermosa Fernández

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

Problem

 

The Javascript rule "Avoid hard-coded or in-comment passwords in code" ( rule code OPT.JAVASCRIPT.PasswordInComments)

...

searches for hard-coded passwords in source code.

...

This rule checks if there are comments in the code that contain expressions that match with a predefined regexp pattern, so it can lead

...

to several false positives and/or false negatives.

...

Solution

This rule contains

...

the parameter "passwordPattern" that you can edit to change the default

...

pattern if you are finding too many false positives.

...

The default regexp pattern is :

 

Code Block
languagejava
themeEclipse
public static final String _PASSWORD_TOKEN =
   "password|passwd|contrase..?a|kontrazeinu|pasahitza|contra-senha|senha|passwort|watchtwoord|adgangskode|"+
   "has\u0142o|parol|parool|parola\\s+d'ordine|mot\\s+de\\s+passe|\u043F\u0430\u0440\u043E\u043B\u044C|heslo|"+
   "\u03C0\u03B1\u03C1\u03B1\u03C3\u03CD\u03BD\u03B8\u03B7\u03BC\u03B1|\u015Fifre|\u5BC6\u7801|\u5BC6\u78BC|"+
   "\u30D1\u30B9\u30EF\u30FC\u30C9|\uC554\uD638|lozinka|\u043B\u043E\u0437\u0438\u043D\u043A\u0430|paasavard";
 /**
  * Common regex pattern for detecting a password encoded in comments.
  * Matches a 'password' token in common languages, optionally followed by at most 7 plain words,
  * with optional whitespace followed by a separator/quoting char.
  */
 public static final String PASSWORD_IN_COMMENT_PATTERN = "(\\b|_)(?:"+_PASSWORD_TOKEN+")(?:\\s+[\\p{L}]+){0,7}\\s*[=\\:\\-'\"]";

...

 

 

 

 

...

 
 
This error happens when KLA detects that the license is not valid (yet) because your computer time is before the expected  license validity time. 
Solution
...
bgColor#fff
Most common reasons for this problem are:
  1. Your computer local time is not synchronized with Time Servers and is running before official time (probably some minutes)
 
...
Most common way to do it is to get sync'd with a NTP Time Server, although you can also manually adjust your time.
 
Anyway, if you are behind the official time a matter of minutes, just wait .. once the license validity time matches your computer time, the error will dissapear (for this time, but it will happen again..)
 

 Content by Label
showLabelsfalse
max5
spacesK5
showSpacefalse
sortmodified
reversetrue
typepage
cqllabel = "kb-troubleshooting-article" and type = "page" and space = "K5"
labelskb-troubleshooting-article
 Page properties
hiddentrue

Related issues
...