Uploaded image for project: 'Syncope'
  1. Syncope
  2. SYNCOPE-1064

Improve security of customization mechanism

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.0.2
    • 2.0.3, 2.1.0
    • enduser
    • None

    Description

      A smart and malicious user could "hack" angularjs frontend components and send info that is not allowed to create/edit.
      Solve this by checking info on server side against form customization JSON.

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. SYNCOPE-1009 Enduser must provide an easy way to enable/disable visualization and sorting of USER attributes

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Activity

            People

              andrea.patricelli Andrea Patricelli
              andrea.patricelli Andrea Patricelli
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: