Skip to content

Service was removed to avoid server side request forgery#1241

Merged
pavgra merged 4 commits into
rc-2.7.3from
issue-1236-ssrf_remove_service
Jul 25, 2019
Merged

Service was removed to avoid server side request forgery#1241
pavgra merged 4 commits into
rc-2.7.3from
issue-1236-ssrf_remove_service

Conversation

@ssuvorov-fls

Copy link
Copy Markdown
Contributor

fixes #1236

@ssuvorov-fls ssuvorov-fls requested a review from wivern July 22, 2019 08:21

@pavgra pavgra left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why haven't you dropped the whole service? It doesn't seem to be used from anywhere

@ssuvorov-fls

Copy link
Copy Markdown
Contributor Author

@pavgra done

@pavgra pavgra left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Clean up classes which we utilized by the SparqlService only. E.g. LinkoutData.

@pavgra pavgra merged commit d0dca23 into rc-2.7.3 Jul 25, 2019
@pavgra pavgra deleted the issue-1236-ssrf_remove_service branch July 25, 2019 15:52
anthonysena pushed a commit that referenced this pull request Aug 8, 2019
* Remove produces annotation + minor improvements (#1232)
* Fix overlap logic.
Allow event cohort periods that start within the target cohort era.  Prior version required the event cohort era to start and end in the target cohort era.
When collapsing, ensure start-end dates span at least a day.
Use count_big when counting cohort events and pathways.
Pad end dates to make non-inclusive.
Added casts for impala
Added temp-table cleanup.
Fixes #779.

* Omit cohort expression from list. - Fixes #219.
* Added client cache directives to response header (#1231)
* Removed legacy service which exposed server side request forgery issue (#1241)
* Added handlers for unexpected errors (#1237)
* Restored Kerberos auth support (#1253)
* Fixes masquerading of credentials in PLE / PLP results (#1255)
* Better quotes handling
* exclude older sql render versions (#1259)
* Fix compatability of /cohortdefinition/{id} endpoint (#1262)
* fixes cycling dependencies (#1264)
* Fix grouping problem in bq (#1267) (#1269)
* Fixes failed Cohort Pathways on Impala (#1274)
* fixes counts as bigint
* fixes Pathways for BQ
* Fixes save of Cohort Definitions when criteria requiring narrower CDM range are added (#1278)
* Fixes timeout based invalidation of Execution Engine jobs (#1272)
* Fixes Impala drivers (#1280)
* Updates circe to newer release which resolves PLE issues on Impala
* Merge fixes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants