Currently We are using Angular2 for front end development and spring for
back end.
Example:User A having access of Page A and Page B
USer B having access of Page A only
I try to logged into Application As userA but by using burp suit(sniffing
tool) before log in service response reached to browser I changed role to
UserB .Based on role attribute I am displaying pages so User B(actual USer
A) can able to see Page B
How can we prevent from this situation?
Is there any solution in Angular2 or spring to escape from this
situation??
Example Response:{
role:UserA,
id:123,
name:xyz
}
Thanks in advance for Responses
--
You received this message because you are subscribed to the Google Groups
"Angular and AngularJS discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to angular+unsubscr...@googlegroups.com.
To post to this group, send email to angular@googlegroups.com.
Visit this group at https://groups.google.com/group/angular.
For more options, visit https://groups.google.com/d/optout.
