Details
-
Type:
Bug
-
Status: Open (View Workflow)
-
Priority:
P2
-
Resolution: Unresolved
-
Affects Version/s: 2.0.3
-
Fix Version/s: None
-
Labels:
-
Template:customfield_11100 34613
-
Development Team:Folijet
-
Epic Link:
Description
The pub-sub user and password are checked into GitHub as seen here. Also at database level, the password is stored as clear text in mod-pubsub."users" table. Please consider a more secure way to handle this.
Steps
- Contact to Vladimir S. and discuss a possible workaround
- Ask the community for security storage
- mod-config or okapi env params as a workaround
- fix bug
Additional Information
Documentation of the current permission implementation: https://github.com/folio-org/mod-pubsub/blob/v2.0.3/README.md#permissions
Attachments
Issue Links
- defines
-
MODPUBSUB-18 Security Manager
-
- Open
-
-
UXPROD-2851 NFR: Data Import (Batch Importer for Bib Acq) & PubSub R2 2021 Juniper Technical, NFR, & Misc bug work
-
- Open
-