Comments (7)
mayhew64
commented on May 24, 2024
@misfir3 @nbaars We need to make this one a priority. We need a RBAC mechanism that is checked for presentation and server side access control.
from webgoat.
misfir3
commented on May 24, 2024
presentation side is covered (commit/push/pull pending) ... looking at backing it up on server-side. No hints should be pulled at all on a challenge, correct?
from webgoat.
misfir3
commented on May 24, 2024
@nbaars @mayhew64 ... give it a once over. If it passes muster, go ahead and import.
... #98
from webgoat.
mayhew64
commented on May 24, 2024
@misfir3 I think we want to perform the check on a role versus a category. I could see other lessons want to disable presentation layer access checks. If it is easy to change to a role, lets do that. If not, we can go with checking the category. I can also see other lessons being in the challenge category and not wanting to have these features disabled.
from webgoat.
misfir3
commented on May 24, 2024
Good point. I'll take another look later today (~ 4 PM ET). Should be able to look at your other PR then as well.
from webgoat.
misfir3
commented on May 24, 2024
Closing since PR has been completed.
from webgoat.
sreejithbk
commented on May 24, 2024
How to disable lesson hints
from webgoat.
Related Issues (20)
- some links show incorrect hostname or context path
- Fix layout of WebWolf
- Web goat HOT 1
- As part of the main build we should create a Docker container HOT 1
- Move to Java 21 HOT 2
- Can't see the quiz HOT 4
- Misconfiguration in JWT's jku lesson HOT 2
- ./mvnw.cmd clean install HOT 1
- fix the sql injection vulnerability in SqlInjectionLesson10.java HOT 1
- (A7) Identity and auth failure, password reset, task #6 HOT 1
- unable to upload file to webwolf HOT 7
- Error page should contain more details
- Test HOT 1
- Quiz not showing HOT 5
- Email client should be part of WebGoat
- Form submission error on Password reset lesson 6 HOT 1
- Dockerfile failed to build
- Report Card Not Reflection Progress HOT 1
- Test failure in XXE in jdk21 γwin10 ;Tests run: 244, Failures: 2, Errors: 0, Skipped: 2 HOT 2
- How to run WebWolf on different port ? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from webgoat.