Apply Clear

# Tracker Status Priority Subject Assignee Target version Category Tags
9220 bug Resolved Highest adapt dataportal to /registrationDTO now using identifier as query parameter and secure against CVE-2007-0450 vulnerability Andreas Kohlbecker Release 5.18 cdm-dataportal security phycobank
9219 task New Highest Revert: requests with %2F in URL are rejected by apache Andreas Kohlbecker Release 5.18 server-maintenance phycobank security
9218 bug Resolved Highest Change /registrationDTO/identifier/... signatures to use query parameters instead Andreas Kohlbecker Release 5.18 cdmlib-remote security phycobank
9083 bug New New Improve authorization handling in synonym details view (and generally) Katja Luther Release 5.18 taxeditor security
9021 bug New Highest Feedback for missing rights on TaxonNode missing Katja Luther Release 5.18 taxeditor security permission UX
8848 bug Feedback Highest Search fails with low data rate network (64kbit/s) network connection due to lost authentication Andreas Müller Release 5.13 taxeditor security permission
8501 task New Priority14 setup OWASP vulnerability checker for projects Andreas Kohlbecker Release 5.18 devOps security
8433 feature request Duplicate New Disallow user names with whitespace Andreas Müller cdmlib security
8328 bug Closed Highest Unpublished record visible in Portal if related name is published Andreas Kohlbecker Release 5.13 cdm-dataportal phycobank permission security
8301 task New New Test family editor rights Andreas Müller Euro+Med TaxEditor issues cdmlib euro+med security
8082 feature request New Priority14 cdm-server docker image allows running the cdm-server as non root user Andreas Kohlbecker Reviewed Next Major Release cdmserver security docker
7972 feature request Resolved Priority14 explicitly allow disallow access to HTTP Invoker endpoints (/remoting/**) Andreas Müller Release 5.5 cdmlib-remote phycobank security
7833 bug Rejected New submitters can access see any registration in any RegistrationWorkingSet Andreas Kohlbecker Release 5.5 cdm-vaadin phycobank security
7492 feature request New New Withheld unpublished taxa from webservice used in other webservices Andreas Müller Euro+Med post migration cdmlib-remote phycobank search euro+med security permission
7197 bug Closed Highest system-admin autheticated through RunAsAuthenticator can stay authenticated after RuntimeException Andreas Kohlbecker Release 4.13 cdm-vaadin security
7147 bug New New GrantedAuthorityRevokingDeleteListener implemented Andreas Müller Unassigned CDM tickets cdmlib security
7099 bug Resolved Highest Make CdmAuthority a persistable class Andreas Kohlbecker CDM UML 5.8 cdm security
7087 bug Worksforme New description/accumulateDistributions webservice can not be triggered Andreas Kohlbecker cdmlib-remote security cichorieae transmission-engine-distribution
7033 bug New New protect User class methods from unauthorized use Andreas Kohlbecker Unassigned CDM tickets cdmlib security permission
7020 feature request New New Allow SpecimenOrObservationBaseVoter to make futher voting decision on base of multiple authorities Andreas Kohlbecker Unassigned CDM tickets cdmlib security
7018 feature request Closed Highest implement a CdmPermissionVoter and default authorities for SpecimenOrObservationBase Andreas Kohlbecker Release 4.11 cdmlib security phycobank
7016 feature request Rejected Highest implement a CdmPermissionVoter for TypeDesignations Andreas Kohlbecker Release 4.11 cdmlib security phycobank
6894 bug Closed New NPE when trying drag&drop a Classification to the GrantedAuthority editor Katja Luther Release 4.10 taxeditor security
6886 bug Duplicate New Entity creation for users having only CREATE may fail in long running conversations Andreas Müller cdmlib security
6885 bug New New UserService.loadUserByUsername() cannot find user in long running session Andreas Müller Unassigned CDM tickets cdmlib security
(1-25/54) Per page: 25, 50, 100

Also available in: Atom CSV PDF

Add picture from clipboard (Maximum size: 40 MB)