-
Type:
Task
-
Status: Open
-
Priority:
Minor
-
Resolution: Unresolved
-
Affects Version/s: 1.0-portal_7.1.0
-
Fix Version/s: 1.0-portal_7.1.0
-
Component/s: None
-
Labels:None
-
Epic/Theme:
-
Epic Link:
Implemented stories
- --
-- REQ029.UC001 PREVENT Misuse of Authorization Code to Impersonate Resource OwnerOAUTH2-96- INTEGRATION: SecurityTest
- --
-- REQ029.UC002 PREVENT Authorization Code Redirection URI Manipulation (open redirect)OAUTH2-97- INTEGRATION: SecurityTest
- --
-- REQ029.UC003 PREVENT Attacking ‘redirect_uri’ (leaking authorization codes through XSS)OAUTH2-98- No automated test possible
- --
-- REQ029.UC004 PREVENT ClickjackingOAUTH2-99- INTEGRATION: SecurityTest
- --
-- REQ031.UC001 PREVENT TOCTOU when registering new scopes after access tokens have been granted (global scopes/aliases)OAUTH2-101- MISSING
- --
-- REQ031.UC002 PREVENT TOCTOU when registering new scopes after access tokens have been granted (Name conflicting scopes)OAUTH2-102- MISSING
- --
-- REQ015 [RFC 7662] OAuth 2.0 Token IntrospectionOAUTH2-28- MISSING
- relates
-
OAUTH2-96 REQ029.UC001 PREVENT Misuse of Authorization Code to Impersonate Resource Owner
-
- Closed
-
-
OAUTH2-97 REQ029.UC002 PREVENT Authorization Code Redirection URI Manipulation (open redirect)
-
- Closed
-
-
OAUTH2-98 REQ029.UC003 PREVENT Attacking ‘redirect_uri’ (leaking authorization codes through XSS)
-
- Closed
-
-
OAUTH2-99 REQ029.UC004 PREVENT Clickjacking
-
- Closed
-
-
OAUTH2-101 REQ031.UC001 PREVENT TOCTOU when registering new scopes after access tokens have been granted (global scopes/aliases)
-
- Closed
-
-
OAUTH2-102 REQ031.UC002 PREVENT TOCTOU when registering new scopes after access tokens have been granted (Name conflicting scopes)
-
- Closed
-
-
OAUTH2-28 REQ015 [RFC 7662] OAuth 2.0 Token Introspection
-
- Closed
-
-
OAUTH2-179 OAuth2 tests covering 7.1.0 release - Part 1 out of 3
-
- Closed
-