tanjjj
tanjjj
To reproduce the error: Have 1 table and in tableDef add a visual link for this table linking to itself. Create vp1 of this table. Create another vp2 of this...
If filter parsing failed, we see no data in view port but there is no error message. See also https://github.com/finos/vuu/pull/1490 https://github.com/finos/vuu/issues/1489 https://github.com/finos/vuu/issues/1491 To reproduce a parsing errors: use a filter...
Anyone can request to get table metadata, and user could send in random RPC calls to get table metadata, get data or create view port. Review permission on RPC calls.
Related to https://github.com/finos/vuu/issues/1468 Access to data should be through column object (did we have a change in this area recently?) Do we need permissionedColumn?
There are 2 things to review. 1. When a user request to create a view port, do we check permission? 2. When creating view port, the user can define calculated...
For security, we want to review the response messages and make sure we don't leak table names etc. And also don't add the actual exception in response message.
As far as I can see there is no permission check on using REST api except the user needs to login. The problem is the user could be modifying rows...
In RowSource we have `def pullRow(key: String, columns: ViewPortColumns): RowData` and `def pullRowFiltered(key: String, columns: ViewPortColumns): RowData` And they seem to have the same behaviour. Do we need both of...
This class is used in tests to compare the result of ViewPortUpdate with a given table. Function assertVpEq can compare up to 19 columns in a table, and a function...