Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow json_records without sensitive info #1324

Closed
I-Valchev opened this issue Apr 22, 2020 · 1 comment
Closed

Allow json_records without sensitive info #1324

I-Valchev opened this issue Apr 22, 2020 · 1 comment
Labels
topic: Security
Milestone
Bolt 4.0.0 stable

Comments

@I-Valchev
Copy link
Member

Calling json_records on a record includes the deleteLink with the csrf token. This is needed in the backend, but there should be an option to safe encode records.
@I-Valchev I-Valchev added this to the Bolt 4.0.0 stable milestone Apr 22, 2020
@I-Valchev
Copy link
Member Author

🤦‍♂️
Ok these are only available if I'm loggd in.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
topic: Security
Projects
None yet
Milestone
Bolt 4.0.0 stable
Development

No branches or pull requests
1 participant
@I-Valchev