Uploaded image for project: 'MyCoRe'
  1. MCR-1058

Add SecureToken V2 support to MCRFileNodeServlet

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Medium
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2015.11
    • Component/s: mycore-base
    • Labels:
      None

      Description

      It would be great if we could implement SecureToken V2 for MCRFileNodeServlet. This would prevent deep linking of files that a readable to public access. This feature should opperate on specific file extensions only and should return "403 - FORBIDDEN" if either the wrong token is submitted or missing.
      This should be a opt-in feature, that is disabled by default.

        Attachments

          Activity

            People

            • Assignee:
              yagee Thomas Scheffler
              Reporter:
              yagee Thomas Scheffler
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: