Ticket #120 (new enhancement) — at Version 1

Opened 5 years ago

Last modified 5 years ago

Security audit

Reported by: dread Owned by: dread
Priority: major Milestone: v0.10
Component: ckan Keywords:
Cc: Repository:
Theme:

Description (last modified by rgrp) (diff)

Look for all places where model is accessed and check authorization is checked.

Document holes (and, as necessary, suggestions for fixes) as new tickets. Likely areas that need looking at:

  • search i/f
  • package WUI commit

Write holes are obviously much more significant to us than read holes.

Change History

comment:1 Changed 5 years ago by rgrp

  • Description modified (diff)
Note: See TracTickets for help on using tickets.