Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0048767 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| feature request | [Retail Modules] Web POS Hardware Manager | major | have not tried | 2022-03-11 10:11 | 2022-03-23 12:25 | |||
| Reporter | adrianromero | View Status | public | |||||
| Assigned To | yogaskarnik | |||||||
| Priority | normal | Resolution | fixed | Fixed in Version | RR22Q2 | |||
| Status | closed | Fix in branch | Fixed in SCM revision | |||||
| Projection | none | ETA | none | Target Version | ||||
| OS | Any | Database | Any | Java version | ||||
| OS Version | Database version | Ant version | ||||||
| Product Version | SCM revision | |||||||
| Merge Request Status | approved | |||||||
| Review Assigned To | ||||||||
| OBNetwork customer | No | |||||||
| Support ticket | ||||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0048767: Sets default server.allowedhost property to localhost | |||||||
| Description | Default configuration of the Hardware Manager allows any host to use its exposed services. As a security measure, by default, only localhost must be allowed to use the Hardware Manager services. This is also the most common deployment environment. Only in very especific situations the Hardware Manager is deployed to expose its services to other hosts. | |||||||
| Steps To Reproduce | N/A | |||||||
| Proposed Solution | Set server.allowedhost default value to localhost. Also expose this value to logging and display it in the Hardware Manager UI Web Server tab. It should be managed in a similar way other server properties are managed like server.fqdn, server.port, ... | |||||||
| Tags | No tags attached. | |||||||
| Attached Files | ||||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
|
 Relationships |
|
Notes |
|
|
(0135923) hgbot (developer) 2022-03-22 17:20 |
Merge Request created: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager.sources/-/merge_requests/58 [^] |
|
(0135934) hgbot (developer) 2022-03-22 18:15 |
Merge Request created: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager/-/merge_requests/41 [^] |
|
(0135960) hgbot (developer) 2022-03-23 12:23 |
Directly closing issue as related merge request is already approved. Repository: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager [^] Changeset: 85ac57d3fb6445d75f87668687d151b3f066be09 Author: Yogas Karnik <yogas.karnik@openbravo.com> Date: 22-03-2022 18:14:10 URL: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager/-/commit/85ac57d3fb6445d75f87668687d151b3f066be09 [^] Fixes ISSUE-0048767: Added default value for allowed host in OBHW properties --- M .gitignore M bin/openbravohw.properties M bin/poshw.jar M bin/rev.id --- |
|
(0135961) hgbot (developer) 2022-03-23 12:23 |
Merge request merged: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager/-/merge_requests/41 [^] |
|
(0135963) hgbot (developer) 2022-03-23 12:25 |
Merge request merged: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager.sources/-/merge_requests/58 [^] |
|
(0135964) hgbot (developer) 2022-03-23 12:25 |
Directly closing issue as related merge request is already approved. Repository: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager.sources [^] Changeset: 4fcf9b9580afe71ca02e61f527e14098a595e743 Author: Yogas Karnik <yogas.karnik@openbravo.com> Date: 23-03-2022 11:25:57 URL: https://gitlab.com/openbravo/product/pmods/org.openbravo.retail.poshwmanager.sources/-/commit/4fcf9b9580afe71ca02e61f527e14098a595e743 [^] Fixes ISSUE-0048767: Sets and logs default allowed host property to localhost --- M project/openbravohw.properties M project/src/com/openbravo/poshw/AppConfig.java M project/src/com/openbravo/poshw/server/ServerManagerJetty.java --- |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2022-03-11 10:11 | adrianromero | New Issue | |
| 2022-03-11 10:11 | adrianromero | Assigned To | => Triage Platform Conn |
| 2022-03-11 10:11 | adrianromero | OBNetwork customer | => No |
| 2022-03-11 10:11 | adrianromero | Triggers an Emergency Pack | => No |
| 2022-03-11 10:12 | adrianromero | Assigned To | Triage Platform Conn => yogaskarnik |
| 2022-03-11 10:12 | adrianromero | Status | new => scheduled |
| 2022-03-22 17:20 | hgbot | Merge Request Status | => open |
| 2022-03-22 17:20 | hgbot | Note Added: 0135923 | |
| 2022-03-22 17:57 | hgbot | Merge Request Status | open => approved |
| 2022-03-22 18:15 | hgbot | Note Added: 0135934 | |
| 2022-03-23 12:23 | hgbot | Resolution | open => fixed |
| 2022-03-23 12:23 | hgbot | Status | scheduled => closed |
| 2022-03-23 12:23 | hgbot | Fixed in Version | => RR22Q2 |
| 2022-03-23 12:23 | hgbot | Note Added: 0135960 | |
| 2022-03-23 12:23 | hgbot | Note Added: 0135961 | |
| 2022-03-23 12:25 | hgbot | Note Added: 0135963 | |
| 2022-03-23 12:25 | hgbot | Note Added: 0135964 | |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |