Uploaded image for project: 'AdMaxLocal'
  1. AdMaxLocal
  2. AML-275

Add input validation and test cases

          Details

          • Sprint:
            Sprint 5

            Description

            Based on the JS303 bean validation work done in AQ-173, add validation and tests to SAPI and/or security component levels to validate user input. Both positive and negative tests for passed parameters (protect against SQL injection or cross site scripting issues, for example). Also validate security policies, such as administrators only being able to access/manipulate users within a realm.

            The 3 primary expected outcomes are:

            1) Definition and documentation of valid data for SAPI (added to JavaDoc and thereby, the API doc)
            2) Increased coverage testing numbers (we should be striving for around 70%)
            3) Implementation and validation of security policies.

              Attachments

                Issue Links

                depends on

                Task - A task that needs to be done. AML-301 Data validation framework for user input

                • Major - Major loss of function.
                • Closed

                  Activity

                    People

                    • Assignee:
                      stacie.waleyko Stacie Waleyko (Inactive)
                      Reporter:
                      gavin.nicol Gavin Nicol (Inactive)
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      1 Start watching this issue

                      Dates

                      • Created:
                        Updated:
                        Resolved: