Michael Wu created EAGLE-172:
--------------------------------
Summary: Scripting string is allowed to create policy rules.
Key: EAGLE-172
URL: https://issues.apache.org/jira/browse/EAGLE-172
Project: Eagle
Issue Type: Bug
Environment: sandbox
Reporter: Michael Wu
Assignee: Jilin, Jiang
While creating a policy, to define a rule, users can input a scripting
fragment. From security perspective, such behavior should be forbidden. Such as
<a href='google' />. See the attached screenshot.
The project is built upon branch:
https://github.com/zombieJ/incubator-eagle/tree/module
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
