Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Remove unused httpbinding "custom security mechanism"

Description

ESP's httpbinding contains presumably unused cookie based "custom security mechanism" which needs to be removed.

Conclusion

None

Activity

Show:

Anthony Fishbeck May 2, 2016 at 5:49 PM

Well right now it is a hack... because it breaks the encapsulation. If we eventually need it and do it right, then it will be a "custom security mechanism".

Rodrigo Pastrana May 2, 2016 at 5:06 PM

Thanks for clarifying, I thought I heard this issue described as a "hack" by somebody, custom security mechanism is prob a more accurate term.

Anthony Fishbeck May 2, 2016 at 5:00 PM
Edited

Just thought I should comment here. We should consider this "hack" a custom security emulation that we will do if we need DynamicESDL to inter-operate with this particular customer in the future. But it should be designed properly when the time comes rather than breaking the black box encapsulation between security manager and client communication protocol.

Right now we have no need for this custom security mechanism.

Rodrigo Pastrana April 29, 2016 at 6:47 PM

Fixed
Pinned fields
Click on the next to a field label to start pinning.

Details

Components

Assignee

Reporter

Priority

Fix versions

Pull Request URL

Created April 29, 2016 at 2:10 PM
Updated May 4, 2016 at 2:10 PM
Resolved May 4, 2016 at 2:10 PM