[MGNLCACHE-314] DOCS: Describe how to configure whitelistedKeyClasses Created: 09/Aug/23 Updated: 10/Aug/23 |
|
| Status: | Open |
| Project: | Cache Modules |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Task | Priority: | Neutral |
| Reporter: | Oanh Thai Hoang | Assignee: | Martin Drápela |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Attachments: |
|
||||||||||||
| Issue Links: |
|
||||||||||||
| Template: |
|
||||||||||||
| Acceptance criteria: |
Empty
|
||||||||||||
| Task DoR: |
Empty
|
||||||||||||
| Date of First Response: | |||||||||||||
| Description |
|
expand the note:
DRAFT: Simply make whitelistedKeyClasses configurable in /modules/cache-browser-app/config/whitelistedKeyClasses and user only has to populate the whitelisted classes to be serialized by the endpoint and cache app via info.magnolia.cache.browser.CacheBrowserAppModule. So we can prevent unwanted class is tried to be deserialized and thus execution of malicious code.
|