Ticket #182 (assigned enhancement)

Opened 4 years ago

Last modified 11 months ago

CAS email lookup service needs to be secured

Reported by: stevec Owned by: josowski
Priority: medium Milestone:
Component: ambra-sso Version: 0.5-SNAPSHOT
Keywords: Cc:

Description

The "email lookup by GUID" service on CAS needs to be restricted either to internal PLoS ONE servers only or to the user making the call. Seems like we can make use of the PGT and wrap a call to the verification servlet, take the GUID, to the lookup, and pass back the email.

Change History

Changed 3 years ago by amit

  • owner changed from viru to stevec

Steve, assigning this back to you. I think we have taken care of this, but just to be sure.

Changed 3 years ago by stevec

no, this has not been taken care of.

Changed 3 years ago by anonymous

  • milestone Bugs deleted

Milestone Bugs deleted

Changed 3 years ago by amit

  • owner changed from stevec to russ

Changed 3 years ago by russ

  • status changed from new to closed
  • resolution set to fixed

Changed 3 years ago by russ

  • status changed from closed to reopened
  • resolution fixed deleted

Changed 3 years ago by russ

  • owner russ deleted
  • status changed from reopened to new

Changed 2 years ago by amit

  • owner set to rich

Changed 13 months ago by rcave

  • status changed from new to assigned
  • priority changed from unassigned to low
  • component changed from ambra to ambra-sso
  • type changed from defect to enhancement
  • owner changed from rcave to npeterson

Changed 11 months ago by npeterson

  • owner changed from npeterson to josowski

Changed 11 months ago by josowski

  • priority changed from low to medium
Note: See TracTickets for help on using tickets.