[MAGNOLIA-1640] security: security filter must be in front of the virtual uri mapping filter Created: 25/Jul/07  Updated: 23/Jan/13  Resolved: 25/Jul/07

Status: Closed
Project: Magnolia
Component/s: security
Affects Version/s: 3.0.2
Fix Version/s: 3.0.3

Type: Bug Priority: Major
Reporter: Philipp Bärfuss Assignee: Philipp Bärfuss
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Template:
Acceptance criteria:
Empty
Task DoD:
[ ]* Doc/release notes changes? Comment present?
[ ]* Downstream builds green?
[ ]* Solution information and context easily available?
[ ]* Tests
[ ]* FixVersion filled and not yet released
[ ]  Architecture Decision Record (ADR)
Bug DoR:
[ ]* Steps to reproduce, expected, and actual results filled
[ ]* Affected version filled

 Description   

The virtual uri mapping filter can forward to jsps. In that case code can be executed which should be protected. See MGNLDMS-101 as an example


Generated at Mon Feb 12 03:28:53 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.