when DBIdentityManager is configured, deny requests involving filters on password property

Description

clients can snoop passwords with requests having a filter on password property.

for instance, the following query checks if the password starts with a

Environment

None

Assignee

Andrea Di Cesare

Reporter

Andrea Di Cesare

Labels

None

Affects versions

Priority

Critical
Configure