[
https://issues.apache.org/jira/browse/WAVE-135?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Ali Lown updated WAVE-135:
--------------------------
Component/s: Server
> Security: XSSI Protection
> -------------------------
>
> Key: WAVE-135
> URL: https://issues.apache.org/jira/browse/WAVE-135
> Project: Wave
> Issue Type: Bug
> Components: Server
> Priority: Minor
> Labels: security
>
> Currently we have a fetch servelet which allows the user to fetch a snapshot
> of the wavelet. We should either remove it or add XSSI protection, by
> purposely prefixing a few characters to the head of the produced json.
> ---
> Issue imported from
> http://code.google.com/p/wave-protocol/issues/detail?id=134
> Owner: [email protected]
> Label: Type-Defect
> Label: Priority-Medium
> Stars: 1
> State: open
> Status: Accepted
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
