Skip to content

JSDK-105 security: remove session token exposure from sdk-java-samples#24

Merged
ibaca merged 1 commit into
masterfrom
JSDK-105/remove-session-token-exposure
Jul 14, 2026
Merged

JSDK-105 security: remove session token exposure from sdk-java-samples#24
ibaca merged 1 commit into
masterfrom
JSDK-105/remove-session-token-exposure

Conversation

@ibaca

@ibaca ibaca commented Jul 14, 2026

Copy link
Copy Markdown
Contributor
  • Remove sessionChangeHook that logged raw bearer token to stdout on every session rotation
  • Remove all session file code: saveSessionFile, loadSessionFile, deleteSessionFile, SESSION_FILE constant, session.local.properties
  • Remove sessionId arg — samples no longer accept or cache a session
  • newApi() now follows sdk-dotnet-samples pattern exactly: new GeotabApi(...) → authenticate() → return; transparent re-auth on expiry is handled internally by GeotabApi.doCall()
  • Add env var support: GEOTAB_SERVER, GEOTAB_DATABASE, GEOTAB_USER, GEOTAB_PASSWORD (checked after system props, before interactive prompt)
  • Update README: document three-priority credential resolution, remove session cache docs, add CI/CD usage examples

- Remove sessionChangeHook that logged raw bearer token to stdout on
  every session rotation
- Remove all session file code: saveSessionFile, loadSessionFile,
  deleteSessionFile, SESSION_FILE constant, session.local.properties
- Remove sessionId arg — samples no longer accept or cache a session
- newApi() now follows sdk-dotnet-samples pattern exactly:
  new GeotabApi(...) → authenticate() → return; transparent re-auth
  on expiry is handled internally by GeotabApi.doCall()
- Add env var support: GEOTAB_SERVER, GEOTAB_DATABASE, GEOTAB_USER,
  GEOTAB_PASSWORD (checked after system props, before interactive prompt)
- Update README: document three-priority credential resolution, remove
  session cache docs, add CI/CD usage examples

Co-Authored-By: Claude <noreply@anthropic.com>
@ibaca ibaca merged commit 3057af0 into master Jul 14, 2026
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant