[ 
https://issues.apache.org/jira/browse/CB-80?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

jcesarmobile closed CB-80.
--------------------------
    Resolution: Won't Fix

Closing as cordova-weinre is being deprecated and no more work will be done

> provide ability to limit access to clients and targets via white-list
> ---------------------------------------------------------------------
>
>                 Key: CB-80
>                 URL: https://issues.apache.org/jira/browse/CB-80
>             Project: Apache Cordova
>          Issue Type: New Feature
>          Components: cordova-weinre (DEPRECATED)
>            Reporter: Patrick Mueller
>            Assignee: Patrick Mueller
>            Priority: Major
>
> For the weinre server, Marian Ignev created a set of commits to allow client 
> access to be whitelisted by ip address.  The pull request is 
> [here|https://github.com/callback/callback-weinre/pull/6].
> This is new API, so I'd like to have a discussion about the best way to 
> handle it.
> The basic API is a new command-line option(s) which provide the white-list of 
> allowed weinre clients.  If a client not on the white-list tries to connect, 
> the connection is denied.
> Some questions:
> 1) What's the use case?
> 2) Should the white-list be ip addresses, ip addresses with globs (9.27.*.*), 
> DNS-able names, ???  Separated by commas seems safe.
> 3) Should we provide this capability for weinre targets as well?  Seems like 
> yes, or at least pretend like we might want to in the future.  Why wasn't 
> this added in the first place?
> 4) For future proofing, if we just do the weinre client then the option name 
> should have "client" in it's name somewhere.
> 5) There's an impact to performance and security if we do allow DNS-able 
> names.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to