Closed
Bug 704235
Opened 13 years ago
Closed 12 years ago
Start a security review process on appsync
Categories
(Web Apps Graveyard :: AppsInTheCloud, defect, P5)
Web Apps Graveyard
AppsInTheCloud
Tracking
(Not tracked)
RESOLVED
INVALID
People
(Reporter: ianbicking, Unassigned)
Details
(Whiteboard: devPreviewNonBlocker [nonmwcblocker])
No description provided.
Reporter | ||
Comment 1•13 years ago
|
||
I don't believe the code is ready entirely for "review", but the process is (e.g., the Sync document) and we should establish the criteria for further steps.
Reporter | ||
Comment 2•13 years ago
|
||
We're in contact with Raymond Forbes about this.
Comment 3•13 years ago
|
||
Whats the status of this?
What kind of security review are you all looking for?
Comment 5•13 years ago
|
||
Not my bug, I am just trying to understand the status. ianb can probably explain.
Reporter | ||
Comment 6•13 years ago
|
||
I'm afraid we haven't really progressed past the "hi, let's talk security review" phase. We have I guess three major pieces that should be reviewed, though on exactly what schedule I'm not sure. There is the specification itself, and then the client and server (and I guess also the Soup client, which is a different implementation). We are also trying to use Sauropod, but I would consider that a separate review process. There's also a general question about what aspects of applications can be sync'd and to what effect, especially if installed application carry around permissions. But so far we don't have any concrete examples of that. But it's something that could emerge as a security question if we extend applications, even if sync doesn't change in the process.
Updated•13 years ago
|
Whiteboard: devPreviewNonBlocker
Reporter | ||
Comment 7•13 years ago
|
||
We should put this review on hold, pending design changes.
Reporter | ||
Updated•13 years ago
|
Priority: -- → P5
Comment 8•12 years ago
|
||
A Pivotal Tracker story has been created for this Bug: https://www.pivotaltracker.com/story/show/24808869
Updated•12 years ago
|
Whiteboard: devPreviewNonBlocker → devPreviewNonBlocker [nonmwcblocker]
Comment 9•12 years ago
|
||
The old app sync codebase is no longer going to be supported. Apps in the cloud will be under a different codebase. None of these bugs are valid anymore.
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → INVALID
Updated•6 years ago
|
Product: Web Apps → Web Apps Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•