From 775ccceb58661a1e44cfd3e21d702da61557a085 Mon Sep 17 00:00:00 2001
From: Andrew McMillan <andrew@morphoss.com>
Date: Tue, 4 Jan 2011 23:22:49 +1300
Subject: [PATCH] Move debug logged password behind specific 'password' debug
 setting.

Signed-off-by: Andrew McMillan <andrew@morphoss.com>
---
 inc/HTTPAuthSession.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/inc/HTTPAuthSession.php b/inc/HTTPAuthSession.php
index 5350c71e..7abfb8b1 100644
--- a/inc/HTTPAuthSession.php
+++ b/inc/HTTPAuthSession.php
@@ -246,7 +246,7 @@ class HTTPAuthSession {
     }
 
     if ( $principal = new Principal('username', $username) ) {
-      dbg_error_log( "BasicAuth", ":CheckPassword: Name:%s, Pass:%s, File:%s, Active:%s", $username, $password, $principal->password, ($principal->user_active?'Yes':'No') );
+      if ( isset($c->dbg['password']) ) dbg_error_log( "password", ":CheckPassword: Name:%s, Pass:%s, File:%s, Active:%s", $username, $password, $principal->password, ($principal->user_active?'Yes':'No') );
       if ( $principal->user_active && session_validate_password( $password, $principal->password ) ) {
         return $principal;
       }