https://sourceforge.net/p/objectrelations/wiki/Security/2012-09-23T14:46:24.963000ZRecent changes to Security2012-09-23T14:46:24.963000Z2012-09-23T14:46:24.963000ZBruno Veldemanhttps://sourceforge.net/u/brunoveldeman/https://sourceforge.netd4c1c5b90773663da1c4a7a251a548314e5e4a6e

<pre>--- v4 +++ v5 @@ -8,5 +8,3 @@ Users with rights can now create users, groups and assign permissions per group for most of the functions. A message will appear if the user does not have the right required for a function. - -Some "Edit" buttons are still visible, even if the user does not have the edit right. </pre>

2012-09-09T15:06:55.688000Z2012-09-09T15:06:55.688000ZBruno Veldemanhttps://sourceforge.net/u/brunoveldeman/https://sourceforge.net5449881ff269a285106f9b1bbf0a264b947b124d

<pre>--- v3 +++ v4 @@ -1,3 +1,5 @@ +__Security__ + Security has been improved with the latest version. All data from user input and output, from and to the database and to web interface is now checked using the appropriate functions. </pre>

2012-09-09T14:37:25.619000Z2012-09-09T14:37:25.619000ZBruno Veldemanhttps://sourceforge.net/u/brunoveldeman/https://sourceforge.net0e588e037522b104e6e0b1b25239138c2d99a2b1

<pre>--- v2 +++ v3 @@ -1,7 +1,10 @@ -Security is the next step. +Security has been improved with the latest version. -First of all I will check user input and output, from and to the database and to web interface. +All data from user input and output, from and to the database and to web interface is now checked using the appropriate functions. -Next I will add users, groups and permissions per group. +Users, groups and permissions per group has been implemented. -Now everybody can add, edit, delete and update. The objective is to implement complete control over what users can do on each of the elements. ^^ Too bad that time is a limited resource. +Users with rights can now create users, groups and assign permissions per group for most of the functions. +A message will appear if the user does not have the right required for a function. + +Some "Edit" buttons are still visible, even if the user does not have the edit right. </pre>

2012-09-07T18:47:43.612000Z2012-09-07T18:47:43.612000ZBruno Veldemanhttps://sourceforge.net/u/brunoveldeman/https://sourceforge.net08cc81c6c4fdf41eb48c069eb2c1760c231eb629

<pre></pre>

2012-09-02T19:28:10.521000Z2012-09-02T19:28:10.521000ZBruno Veldemanhttps://sourceforge.net/u/brunoveldeman/https://sourceforge.netb1fca45afcad6c604aaa77666a6d68fbbdc0b56d

Security is the next step. First of all I will check user input and output, from and to the database and to web interface. Next I will add users, groups and permissions per group. Now everybody can add, edit, delete and update. The objective is to implement complete control over what users can do on each of the elements. ^^ Too bad that time is a limited resource.