Clone
Jacques Le Roux <jacques.le.roux@les7arts.com>
committed
on 14 Mar
Improved: "auth" should be true for all the request url used for Application components
(OFBIZ-4956)

Currently there are some URLs present … Show more
Improved: "auth" should be true for all the request url used for Application components

(OFBIZ-4956)

Currently there are some URLs present in application components with

auth="false". So anyone can hit these URLs and access these resources without

authorization.

I think all the URLs should be secure with auth="true"

Thanks: Amardeep Singh Jhajj for report and initial fix

Show less