juddi-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <juddi-...@ws.apache.org>
Subject [jira] [Commented] (JUDDI-686) track and map requestors IP address to auth token
Date Tue, 05 Nov 2013 21:43:18 GMT

    [ https://issues.apache.org/jira/browse/JUDDI-686?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13814279#comment-13814279
] 

ASF subversion and git services commented on JUDDI-686:
-------------------------------------------------------

Commit 1539136 from [~spyhunter99] in branch 'juddi/trunk'
[ https://svn.apache.org/r1539136 ]

JUDDI-686 updating database ddl files

> track and map requestors IP address to auth token
> -------------------------------------------------
>
>                 Key: JUDDI-686
>                 URL: https://issues.apache.org/jira/browse/JUDDI-686
>             Project: jUDDI
>          Issue Type: Improvement
>            Reporter: Alex O'Ree
>            Assignee: Alex O'Ree
>             Fix For: 3.2
>
>
> basically, we can make auth token's a bit more secure by obtaining the requestor's ip
address and store that along with the auth token (server side). upon validating an new request,
we can then compare IP addresses. if they are different, invalidate the token and force reauthentication




--
This message was sent by Atlassian JIRA
(v6.1#6144)

Mime
View raw message