You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@shindig.apache.org by "Paul Lindner (JIRA)" <ji...@apache.org> on 2009/04/23 08:40:47 UTC

[jira] Created: (SHINDIG-1027) Address problems with three-legged OAuth identified by Advisory 2009-1

Address problems with three-legged OAuth identified by Advisory 2009-1
----------------------------------------------------------------------

                 Key: SHINDIG-1027
                 URL: https://issues.apache.org/jira/browse/SHINDIG-1027
             Project: Shindig
          Issue Type: Improvement
          Components: Java
    Affects Versions: trunk
            Reporter: Paul Lindner


Public details forthcoming at http://oauth.net/advisories/2009-1

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Updated: (SHINDIG-1027) Address problems with three-legged OAuth identified by Advisory 2009-1

Posted by "Paul Lindner (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/SHINDIG-1027?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Paul Lindner updated SHINDIG-1027:
----------------------------------

    Description: 
Details at http://oauth.net/advisories/2009-1

Great writeup here:

http://cwiki.apache.org/confluence/display/SHINDIG/OAuthSessionFixationAttack

  was:Public details forthcoming at http://oauth.net/advisories/2009-1


> Address problems with three-legged OAuth identified by Advisory 2009-1
> ----------------------------------------------------------------------
>
>                 Key: SHINDIG-1027
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-1027
>             Project: Shindig
>          Issue Type: Improvement
>          Components: Java
>    Affects Versions: trunk
>            Reporter: Paul Lindner
>
> Details at http://oauth.net/advisories/2009-1
> Great writeup here:
> http://cwiki.apache.org/confluence/display/SHINDIG/OAuthSessionFixationAttack

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Resolved: (SHINDIG-1027) Address problems with three-legged OAuth identified by Advisory 2009-1

Posted by "Paul Lindner (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/SHINDIG-1027?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Paul Lindner resolved SHINDIG-1027.
-----------------------------------

       Resolution: Fixed
    Fix Version/s: 1.1-M1

looks like we're okay.


> Address problems with three-legged OAuth identified by Advisory 2009-1
> ----------------------------------------------------------------------
>
>                 Key: SHINDIG-1027
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-1027
>             Project: Shindig
>          Issue Type: Improvement
>          Components: Java
>    Affects Versions: 1.1-M1
>            Reporter: Paul Lindner
>             Fix For: 1.1-M1
>
>
> Details at http://oauth.net/advisories/2009-1
> Great writeup here:
> http://cwiki.apache.org/confluence/display/SHINDIG/OAuthSessionFixationAttack

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.