Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Unresolved
Priority: Major - P3
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
- server-security-prioritized-backlog

Assigned Teams:

Server Security
Operating System:
ALL
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

Currently an AuthorizationContract is attached to an AuthorizationSession. This contract tracks only top level commands done in the session and skips nested commands made through DBDirectClient.

We should also track and verify nested commands.

Not doing this could lead to a command adding extra checks and breaking the stable API.

Assignee:: Unassigned
Reporter:: Adrian Gonzalez Montemayor
Participants:: Adrian Gonzalez Montemayor
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: Sep 12 2025 03:38:58 PM UTC
Updated:: Sep 15 2025 05:29:22 PM UTC

Details

Description

Attachments

Activity

People

Dates