incubator-jspwiki-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Florian Holeczek (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (JSPWIKI-736) skin=raw (view page source) delivers sensitive information
Date Tue, 17 Jul 2012 18:53:34 GMT

     [ https://issues.apache.org/jira/browse/JSPWIKI-736?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Florian Holeczek updated JSPWIKI-736:
-------------------------------------

    Priority: Trivial  (was: Blocker)
    Security:     (was: Security Vulnerability Disclosure)
    
> skin=raw (view page source) delivers sensitive information
> ----------------------------------------------------------
>
>                 Key: JSPWIKI-736
>                 URL: https://issues.apache.org/jira/browse/JSPWIKI-736
>             Project: JSPWiki
>          Issue Type: Bug
>          Components: Default template, Plugins
>    Affects Versions: 2.8.4
>         Environment: IfPlugin
>            Reporter: Bertram Nudelbach
>            Priority: Trivial
>             Fix For: 2.9
>
>
> I would like to hide content per {{IfPlugin}}, e.g.
> {code}
> [{IfPlugin user='Simon'
> sensitive information for simon
> }]
> {code}
> Now if I log in as Robert for instance, with ''view page source'' delivers all information
that should be hidden from Robert..

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message