Openbravo Issue Tracking System - Retail Modules |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0048767 | Retail Modules | Web POS Hardware Manager | public | 2022-03-11 10:11 | 2022-03-23 12:25 |
|
| Reporter | adrianromero | |
| Assigned To | yogaskarnik | |
| Priority | normal | Severity | major | Reproducibility | have not tried |
| Status | closed | Resolution | fixed | |
| Platform | | OS | 5 | OS Version | |
| Product Version | | |
| Target Version | | Fixed in Version | RR22Q2 | |
| Merge Request Status | |
| Review Assigned To | |
| OBNetwork customer | |
| Support ticket | |
| Regression level | |
| Regression date | |
| Regression introduced in release | |
| Regression introduced by commit | |
| Triggers an Emergency Pack | No |
|
| Summary | 0048767: Sets default server.allowedhost property to localhost |
| Description | Default configuration of the Hardware Manager allows any host to use its exposed services.
As a security measure, by default, only localhost must be allowed to use the Hardware Manager services. This is also the most common deployment environment. Only in very especific situations the Hardware Manager is deployed to expose its services to other hosts. |
| Steps To Reproduce | N/A |
| Proposed Solution | Set server.allowedhost default value to localhost.
Also expose this value to logging and display it in the Hardware Manager UI Web Server tab. It should be managed in a similar way other server properties are managed like server.fqdn, server.port, ...
|
| Additional Information | |
| Tags | No tags attached. |
| Relationships | |
| Attached Files | |
|
| Issue History |
| Date Modified | Username | Field | Change |
| 2022-03-11 10:11 | adrianromero | New Issue | |
| 2022-03-11 10:11 | adrianromero | Assigned To | => Triage Platform Conn |
| 2022-03-11 10:11 | adrianromero | Triggers an Emergency Pack | => No |
| 2022-03-11 10:12 | adrianromero | Assigned To | Triage Platform Conn => yogaskarnik |
| 2022-03-11 10:12 | adrianromero | Status | new => scheduled |
| 2022-03-22 17:20 | hgbot | Note Added: 0135923 | |
| 2022-03-22 18:15 | hgbot | Note Added: 0135934 | |
| 2022-03-23 12:23 | hgbot | Resolution | open => fixed |
| 2022-03-23 12:23 | hgbot | Status | scheduled => closed |
| 2022-03-23 12:23 | hgbot | Fixed in Version | => RR22Q2 |
| 2022-03-23 12:23 | hgbot | Note Added: 0135960 | |
| 2022-03-23 12:23 | hgbot | Note Added: 0135961 | |
| 2022-03-23 12:25 | hgbot | Note Added: 0135963 | |
| 2022-03-23 12:25 | hgbot | Note Added: 0135964 | |