[
https://issues.apache.org/jira/browse/OFBIZ-12857?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17768244#comment-17768244
]
ASF subversion and git services commented on OFBIZ-12857:
---------------------------------------------------------
Commit fe2de1721dea7bbab973ab7f66d4241572fda6be in ofbiz-plugins's branch
refs/heads/release22.01 from Jacques Le Roux
[ https://gitbox.apache.org/repos/asf?p=ofbiz-plugins.git;h=fe2de1721 ]
Fixed: Execution of queries without authentication (OFBIZ-12857)
My brain told me that I could have made an error in previous commit.
I just checked, it was right.
This fixes previous commit where I misused userIsUnauthorized.
Conflicts handled by hand
> Execution of queries without authentication
> -------------------------------------------
>
> Key: OFBIZ-12857
> URL: https://issues.apache.org/jira/browse/OFBIZ-12857
> Project: OFBiz
> Issue Type: Sub-task
> Components: solr
> Affects Versions: 22.01.01, 18.12.09
> Reporter: Jacques Le Roux
> Assignee: Jacques Le Roux
> Priority: Major
> Fix For: 22.01.01, 18.12.09
>
>
> A security reporter who does not want to be named reported it to us.
> The problem lies with the Solr Plugin for OFBiz. It allows the execution of
> queries without authentication.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
