View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0006504 | 10000-004: Services | Spec | public | 2021-02-17 17:08 | 2022-12-08 15:59 |
| Reporter | Randy Armstrong | Assigned To | Randy Armstrong | ||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | assigned | Resolution | open | ||
| Summary | 0006504: Gateway Server has numerous security issues that are not discussed | ||||
| Description | A separate section describing the concept and what to expect when comes to questions of user authentication and other security related concerns. | ||||
| Tags | No tags attached. | ||||
| Commit Version | |||||
| Fix Due Date | |||||
| related to | 0006512 | assigned | Randy Armstrong | 5.6.3.1text needs to reference UserIdentityToken section |
|
|
We agreed that there is no known use for the gateway feature today and that we need additional definitions, descriptions and clarifications. Such additional text should be provided by the security working group. |
|
|
Proposal is to drop the concept of a standardized gateway as this man-in-the-middle in prevented by UA security mechanisms. Randy to double check with the Security sub-group to validate this proposal to close this with no-fix. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2021-02-17 17:08 | Randy Armstrong | New Issue | |
| 2021-03-01 18:18 | Matthias Damm | Assigned To | => Randy Armstrong |
| 2021-03-01 18:18 | Matthias Damm | Status | new => acknowledged |
| 2021-03-01 18:18 | Matthias Damm | Note Added: 0013853 | |
| 2021-03-01 18:19 | Matthias Damm | Relationship added | related to 0006512 |
| 2022-12-08 15:51 | Jim Luth | Note Added: 0018274 | |
| 2022-12-08 15:59 | Jim Luth | Status | acknowledged => assigned |
