[jira] Created: (OFBIZ-2074) Tarpitting feature for confidential data access
Locked
12
12
[jira] Created: (OFBIZ-2074) Tarpitting feature for confidential data access
 
|
Tarpitting feature for confidential data access
----------------------------------------------- Key: OFBIZ-2074 URL: https://issues.apache.org/jira/browse/OFBIZ-2074 Project: OFBiz Issue Type: New Feature Components: ALL COMPONENTS Affects Versions: SVN trunk Environment: NA Reporter: Jacques Le Roux Assignee: Jacques Le Roux Priority: Minor The goal is to avoid, as much as possible, confidential data leakage. This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Tarpitting feature for confidential data access
|
|
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Remaining Estimate: 20h (was: 48h) Original Estimate: 20h (was: 48h) > Tarpitting feature for confidential data access > ----------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch > > Original Estimate: 20h > Remaining Estimate: 20h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Tarpitting feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: requesthandler.patch This patch is no usable alone (though can be easily tested). More patches or rather a more complete patch will come later > Tarpitting feature for confidential data access > ----------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch > > Original Estimate: 20h > Remaining Estimate: 20h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Tarpitting feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: requesthandler.patch Patch version dealing with no "error" response case > Tarpitting feature for confidential data access > ----------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Remaining Estimate: 20h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Summary: Grey list feature for confidential data access (was: Tarpitting feature for confidential data access) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Remaining Estimate: 20h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: requesthandler.patch This patch version implement the (wronly names) grayList attribute in request map. The name will be changed to protect-view and the value set to false by default As I said on dev ML I'm really not satisified by my solution (I hard coded a method name). I guess I will try to rewrite it today. > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Remaining Estimate: 20h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: requesthandler.patch This patch (2008-12-13) is not intended. To test simply add protect-view="true" to request-map login : <request-map uri="login" protect-view="true"> > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Remaining Estimate: 20h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Work logged: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#action_10760 ] Jacques Le Roux logged work on OFBIZ-2074: ------------------------------------------ Author: Jacques Le Roux Created on: 13/Dec/08 12:27 AM Start Date: 13/Dec/08 12:27 AM Worklog Time Spent: 10h Issue Time Tracking ------------------- Time Spent: 10h Remaining Estimate: 10h (was: 20h) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 10h > Remaining Estimate: 10h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: requesthandler.patch New version (2008-12-13 : 2d) easier for testing. I also managed a "block" response, so no conflict with a possible existing error response (could be the same view than the one we want to protect). The default view (none - ie blanck screen - if not defined) is shown is no "block" response is defined. > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Remaining Estimate: 20h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: ProtectedView.patch More work, still miss the meat (but I'm a vegetarian, not a joke) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 10h > Remaining Estimate: 10h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Work logged: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#action_10761 ] Jacques Le Roux logged work on OFBIZ-2074: ------------------------------------------ Author: Jacques Le Roux Created on: 13/Dec/08 01:25 PM Start Date: 13/Dec/08 01:25 PM Worklog Time Spent: 4h Issue Time Tracking ------------------- Time Spent: 14h (was: 10h) Remaining Estimate: 6h (was: 10h) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 14h > Remaining Estimate: 6h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Work logged: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#action_10763 ] Jacques Le Roux logged work on OFBIZ-2074: ------------------------------------------ Author: Jacques Le Roux Created on: 14/Dec/08 11:37 AM Start Date: 14/Dec/08 11:36 AM Worklog Time Spent: 4h Issue Time Tracking ------------------- Time Spent: 18h (was: 14h) Remaining Estimate: 2h (was: 6h) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 18h > Remaining Estimate: 2h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: ProtectedView.patch This patch is near complete and ok to be reviewed, not to be commited yet > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 18h > Remaining Estimate: 2h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: ProtectedView.patch Patch OK to be commited > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 18h > Remaining Estimate: 2h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: (was: requesthandler.patch) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 18h > Remaining Estimate: 2h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Work logged: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#action_10764 ] Jacques Le Roux logged work on OFBIZ-2074: ------------------------------------------ Author: Jacques Le Roux Created on: 15/Dec/08 02:50 AM Start Date: 15/Dec/08 02:50 AM Worklog Time Spent: 1h Issue Time Tracking ------------------- Time Spent: 19h (was: 18h) Remaining Estimate: 1h (was: 2h) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 19h > Remaining Estimate: 1h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: ProtectedView.patch > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 19h > Remaining Estimate: 1h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: (was: requesthandler.patch) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 19h > Remaining Estimate: 1h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: (was: requesthandler.patch) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, requesthandler.patch, requesthandler.patch > > Original Estimate: 20h > Time Spent: 19h > Remaining Estimate: 1h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
[jira] Updated: (OFBIZ-2074) Grey list feature for confidential data access
|
|
In reply to this post by Nicolas Malin (Jira)
[ https://issues.apache.org/jira/browse/OFBIZ-2074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Jacques Le Roux updated OFBIZ-2074: ----------------------------------- Attachment: (was: requesthandler.patch) > Grey list feature for confidential data access > ---------------------------------------------- > > Key: OFBIZ-2074 > URL: https://issues.apache.org/jira/browse/OFBIZ-2074 > Project: OFBiz > Issue Type: New Feature > Components: ALL COMPONENTS > Affects Versions: SVN trunk > Environment: NA > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Minor > Attachments: ProtectedView.patch, ProtectedView.patch, ProtectedView.patch, ProtectedView.patch > > Original Estimate: 20h > Time Spent: 19h > Remaining Estimate: 1h > > The goal is to avoid, as much as possible, confidential data leakage. > This feature will disallow access for a period of time to a view if this view is accessed more than a number of time in a period of time. This will prevent confidential data thievery done from a compromised login/pwd couple. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online. |
«
Return to OFBiz - Dev
|
1 view|%1 views
| Free forum by Nabble | Edit this page |