Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-7783

Attach access control logic to tickets

    Details

      Description

      Currently, if the EJBCA Issue Tracker is enabled, tickets are shown to any administrator in EJBCA. An administrator may want to restrict access to the Issue Tracker, since the ticket descriptions can reveal information about how the system is set up.

      To allow more more granular control, create a method boolean Ticket.isAuthorized(AuthenticationToken authenticationToken) returning true iff a certain admin is authorised to view a particular ticket.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                bastianf Bastian Fredriksson
                Reporter:
                bastianf Bastian Fredriksson
                Verified by:
                Samuel Lidén Borell
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 1 day
                  1d
                  Remaining:
                  Time Spent - 3 hours, 55 minutes Remaining Estimate - 4 hours, 5 minutes
                  4h 5m
                  Logged:
                  Time Spent - 3 hours, 55 minutes Remaining Estimate - 4 hours, 5 minutes
                  3h 55m