You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shiro.apache.org by "k4n5hao (Jira)" <ji...@apache.org> on 2021/06/05 13:44:00 UTC

[jira] [Created] (SHIRO-824) how to create an allow list avoid deserialize vulnerability

k4n5hao created SHIRO-824:
-----------------------------

             Summary: how to create an allow list avoid deserialize vulnerability
                 Key: SHIRO-824
                 URL: https://issues.apache.org/jira/browse/SHIRO-824
             Project: Shiro
          Issue Type: Question
          Components: RememberMe
    Affects Versions: 1.7.1
            Reporter: k4n5hao


how to create an allow list (or similar), to avoid deserialize vulnerability like Shiro-550 whith rememberMe? i really check doc and google, icant't find one. thx



--
This message was sent by Atlassian Jira
(v8.3.4#803005)