Uploaded image for project: 'UIMA'
  1. UIMA
  2. UIMA-5206

DUCC Web Server (WS) should provide restriction on responses comprising user data

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.2.0-Ducc
    • Component/s: DUCC
    • Labels:
      None

      Description

      DUCC WS should be configurable such that responses comprising user data can be prevented over http, instead requiring https.

        Activity

        Hide
        lou.degenaro Lou DeGenaro added a comment -
        • Provide entry in ducc.properties to control the restrictions mode on responses comprising user data
        • Provide an externalized list of URI prefixes that are exempt from restrictions
        • Allow requests when in unrestricted mode
        • Allow requests when in restricted mode but URI is in exempt list
        • Redirect non-exempt http requests to https when in encrypted mode, if possible
        • Allow https non-exempt requests when in encrypted mode; deny http non-exempt requests (if not redirected to https)
        • Prevent non-exempt requests when in blocked mode (forbidden!)
        Show
        lou.degenaro Lou DeGenaro added a comment - Provide entry in ducc.properties to control the restrictions mode on responses comprising user data Provide an externalized list of URI prefixes that are exempt from restrictions Allow requests when in unrestricted mode Allow requests when in restricted mode but URI is in exempt list Redirect non-exempt http requests to https when in encrypted mode, if possible Allow https non-exempt requests when in encrypted mode; deny http non-exempt requests (if not redirected to https) Prevent non-exempt requests when in blocked mode (forbidden!)
        Hide
        lou.degenaro Lou DeGenaro added a comment -

        Code is delivered.

        Show
        lou.degenaro Lou DeGenaro added a comment - Code is delivered.

          People

          • Assignee:
            lou.degenaro Lou DeGenaro
            Reporter:
            lou.degenaro Lou DeGenaro
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development