Uploaded image for project: 'Oozie'
  1. Oozie
  2. OOZIE-3109

[log-streaming] Escape HTML-specific characters

VotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 4.3.0
    • 5.1.0
    • None
    • None

    Description

      That can be a security problem if we do not encode the stream read from log files before transferred to the web browser.

      Attachments

        1. OOZIE-3109-v004.patch
          9 kB
          Dénes Bodó
        2. OOZIE-3109-v003.patch
          9 kB
          Dénes Bodó
        3. OOZIE-3109-v002.patch
          7 kB
          Dénes Bodó
        4. OOZIE-3109-v001.patch
          7 kB
          Dénes Bodó

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            dionusos Dénes Bodó
            dionusos Dénes Bodó
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment