Details
-
Bug
-
Status: Closed (View Workflow)
-
P2
-
Resolution: Done
-
2.0.3
-
-
EPAM-Veg Sprint 113
-
3
-
Vega
-
R1 2021 Bug Fix
Description
The pub-sub user and password are checked into GitHub as seen here. Also at database level, the password is stored as clear text in mod-pubsub."users" table. Please consider a more secure way to handle this.
Steps
- Contact to Vladimir S. and discuss a possible workaround
- Ask the community for security storage
- mod-config or okapi env params as a workaround
- fix bug
Additional Information
Documentation of the current permission implementation: https://github.com/folio-org/mod-pubsub/blob/v2.0.3/README.md#permissions
TestRail: Results
Attachments
Issue Links
- blocks
-
FOLIO-3134 Reconfigure container deployment for mod-pubsub in folio-ansible
-
- Closed
-
- defines
-
MODPUBSUB-18 Security Manager
-
- Closed
-
-
UXPROD-2851 NFR: Data Import (Batch Importer for Bib Acq) & PubSub R2 2021 Juniper Technical, NFR, & Misc bug work
-
- Closed
-
- relates to
-
MODPUBSUB-165 Release v2.0.6
-
- Closed
-