Details
-
Type:
Improvement
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: EJBCA 7.0.1
-
Component/s: None
-
Labels:
-
Provenance:Internal Delivery
-
Epic Link:
-
Sprint:EJBCA Team Bob - 2019 w6
Description
Currently, if the EJBCA Issue Tracker is enabled, tickets are shown to any administrator in EJBCA. An administrator may want to restrict access to the Issue Tracker, since the ticket descriptions can reveal information about how the system is set up.
To allow more more granular control, create a method boolean Ticket.isAuthorized(AuthenticationToken authenticationToken) returning true iff a certain admin is authorised to view a particular ticket.