#260 ✓resolved
Greg Schueler

whitelist/regex for remote resource URL requests

Reported by Greg Schueler | April 25th, 2011 @ 09:32 AM | in Rundeck 1.3 (closed)

"For example, an additional check should be made to prevent rundeck from making requests to some random endpoint. Something like: framework.properties.secure_domain.0=https://internal.host.network: (regex or glob here)
framework.properties.secure_domain.1=file:///var/rundeck/* (regex or glob here)
the above is nice to have considering the users are authenticated before being able to make the call."

Comments and changes to this ticket

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

(DEPRECATED) Please use github issues for issue tracking at http://github.com/dtolabs/rundeck/issues

Shared Ticket Bins

People watching this ticket

Referenced by