View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0009723 | Taler | exchange | public | 2025-04-10 18:46 | 2025-06-22 13:49 |
| Reporter | Christian Grothoff | Assigned To | Christian Grothoff | ||
| Priority | normal | Severity | minor | Reproducibility | N/A |
| Status | resolved | Resolution | fixed | ||
| Platform | i7 | OS | Debian GNU/Linux | OS Version | squeeze |
| Product Version | git (master) | ||||
| Target Version | 1.0 stretch goals | Fixed in Version | 1.0 stretch goals | ||
| Summary | 0009723: exchange should set cache-control headers on GET requests to 'no-store' disable caching in some cases | ||||
| Description | Some GET APIs return somewhat private data, we should explicitly tell HTTP caches to not store those. This might have prevented a (minor) security issue found by RoS where i-Things cached possibly sensitive data on exposed local storage. | ||||
| Tags | No tags attached. | ||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2025-04-10 18:46 | Christian Grothoff | New Issue | |
| 2025-04-10 18:46 | Christian Grothoff | Status | new => assigned |
| 2025-04-10 18:46 | Christian Grothoff | Assigned To | => Christian Grothoff |
| 2025-04-10 18:46 | Christian Grothoff | Assigned To | Christian Grothoff => |
| 2025-04-10 18:46 | Christian Grothoff | Status | assigned => confirmed |
| 2025-06-22 00:22 | Christian Grothoff | Assigned To | => Christian Grothoff |
| 2025-06-22 00:22 | Christian Grothoff | Status | confirmed => assigned |
| 2025-06-22 13:49 | Christian Grothoff | Changeset attached | => merchant master 6ca94626 |
| 2025-06-22 13:49 | Christian Grothoff | Note Added: 0025302 | |
| 2025-06-22 13:49 | Christian Grothoff | Status | assigned => resolved |
| 2025-06-22 13:49 | Christian Grothoff | Resolution | open => fixed |
| 2025-06-22 13:49 | Christian Grothoff | Fixed in Version | => 1.0 stretch goals |
| 2025-06-22 13:49 | Christian Grothoff | Target Version | post-1.0 => 1.0 stretch goals |
