cubicweb #511718 explain why rql expr insertion doesn't work to ease security debugging [open]
Try to explain why such exception occurs File "src/fcw/cubicweb/server/querier.py", line 270, in _insert_security rewrite(myrqlst, lcheckdef, lchecksolutions, self.args) File "src/fcw/cubicweb/rqlrewrite.py", line 152, in rewrite self.insert_snippets(snippets) File "src/fcw/cubicweb/rqlrewrite.py", line 213, in insert_snippets raise Unauthorized() Unauthorized: You are not allowed to perform this operation if too expensive at execution time, find a way to check them in a separated tool or at startup. | |
| priority | normal |
|---|---|
| type | enhancement |
| done in | <not specified> |
| load | 1.000 |
| load left | 1.000 |
| closed by | <not specified> |
similar entities
- cubicweb #2103684 use passlib (?)
- cubicweb #3770459 ldapfeed ignores ssl/tls certificates
- cubicweb-mercurial-server mercurial-server integration cube
- cubicweb-openidrelay #2502648 info log prints out password in log
- cubicweb #959523 support unicity of foreign key + value with SQL implementation
[see all]