Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Avoid user enumeration #2735

Merged
merged 3 commits into from
Apr 19, 2022
Merged

Avoid user enumeration #2735

merged 3 commits into from
Apr 19, 2022

Conversation

kobergj
Copy link
Contributor

@kobergj kobergj commented Apr 12, 2022
edited
Loading

Don't expose the altered requestPath to avoid user enumeration through PROPFIND requests.

Github-Issue: owncloud/ocis#3344
See also jira-ticket: https://jira.owncloud.com/browse/OCIS-2414

@kobergj
don't expose altered requestPath
3858b84 
Signed-off-by: jkoberg <jkoberg@owncloud.com>
@kobergj kobergj requested review from a team, labkode and ishank011 as code owners April 12, 2022 08:08
@update-docs
Copy link

update-docs bot commented Apr 12, 2022

Thanks for opening this pull request! The maintainers of this repository would appreciate it if you would create a changelog item based on your changes.

@kobergj kobergj requested review from C0rby and removed request for labkode and ishank011 April 12, 2022 08:08
@kobergj
add changelog
87833b3 
Signed-off-by: jkoberg <jkoberg@owncloud.com>
@kobergj kobergj requested a review from glpatcern as a code owner April 12, 2022 08:12
@kobergj kobergj changed the title Avoid user enmuration Avoid user enumeration Apr 12, 2022
@kobergj kobergj removed the request for review from glpatcern April 12, 2022 08:14
micbar
micbar previously approved these changes Apr 12, 2022
View reviewed changes
@kobergj
update expected failures
000153f 
Signed-off-by: jkoberg <jkoberg@owncloud.com>
@kobergj kobergj requested a review from micbar April 12, 2022 09:25
@kobergj
Copy link
Contributor Author

kobergj commented Apr 12, 2022

@micbar I needed to update expected failures as the tests were checking for exact error message. Could you recheck?

@kobergj kobergj dismissed micbar’s stale review April 12, 2022 12:52

later changes require re-review

@butonic butonic merged commit 874779a into cs3org:edge Apr 19, 2022
@micbar micbar mentioned this pull request May 5, 2022
Closed
45 tasks
@C0rby C0rby mentioned this pull request Jun 7, 2022
Closed
@kobergj kobergj mentioned this pull request Oct 14, 2022
Merged
@kiranparajuli589 kiranparajuli589 mentioned this pull request Oct 20, 2022
Merged
@kiranparajuli589 kiranparajuli589 mentioned this pull request Oct 28, 2022
Merged
@kobergj kobergj mentioned this pull request Dec 19, 2022
Merged
@kobergj kobergj mentioned this pull request May 22, 2023
Closed
@kobergj kobergj mentioned this pull request Mar 1, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@butonic butonic butonic approved these changes

@C0rby C0rby Awaiting requested review from C0rby

@micbar micbar Awaiting requested review from micbar

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@kobergj @butonic @micbar