iamqq23ue opened a new issue, #9446: URL: https://github.com/apache/rocketmq/issues/9446
### Before Creating the Bug Report - [x] I found a bug, not just asking a question, which should be created in [GitHub Discussions](https://github.com/apache/rocketmq/discussions). - [x] I have searched the [GitHub Issues](https://github.com/apache/rocketmq/issues) and [GitHub Discussions](https://github.com/apache/rocketmq/discussions) of this repository and believe that this is not a duplicate. - [x] I have confirmed that this bug belongs to the current repository, not other repositories of RocketMQ. ### Runtime platform environment linux ### RocketMQ version 5.3.3 ### JDK Version jdk8 ### Describe the Bug 根据acl2.0全新升级这篇文章,acl2.0可以不用明文保存密码。但实际发现有两个地方还是要明文密码。 1,innerClientAuthenticationCredentials还是会配置明文的用户密码 2,新创建的用户密码会在config/users/000024.sst也能看到。这个文件不是纯文本,但可以被文本扫描看到内容。比如使用写字板打开能看到密码。 ### Steps to Reproduce 1,innerClientAuthenticationCredentials还是会配置明文的用户密码 2,新创建的用户密码会在config/users/000024.sst也能看到。这个文件不是纯文本,但可以被文本扫描看到内容。比如使用写字板打开能看到密码。 ### What Did You Expect to See? 配置文件或存储文件中查不到明文密码 ### What Did You See Instead? 可以看到明文密码 ### Additional Context _No response_ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
