doodoo icon indicating copy to clipboard operation
doodoo copied to clipboard

Published 20 hours ago verified publisher icon Mikepicker

Isn't this insecure?

Open jakubsuchy opened this issue 1 year ago • 0 comments

https://github.com/Mikepicker/doodoo/blob/bd789f93712847f26070c7ecdc838a2b4542c85c/index.html#L219

The way you are using the authID means it could be spoofed possibly? The collection should really have a filter on it only allowing access by the same request author?

jakubsuchy avatar Jan 25 '24 01:01 jakubsuchy