Database Password Security Check Doesn't Check All Possible URIs #8833
Labels
bounty:$10
Bounty applies for fixing this issue (Parse Bounty Program)
type:feature
New feature or improvement of existing feature
Comments
Thanks for opening this issue! |
mtrezza
added
type:feature
|
Hello, I am new to contributing. Can you please give me some more explanation to this problem. It seems i can work on it. |
This was referenced Apr 11, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
parse-server/src/Security/CheckGroups/CheckGroupDatabase.js
Line 18 in 2c2563e
Would it be beneficial to also look for
config.databaseURIif a database adapter is not defined in the configuration object? I do not currently have a database adapter defined in my config (using Postgresql), and when I access the new/securityendpoint, it informs me my password does not meet the minimum requirements. However, it does meet the minimum requirements specified inCheckGroupDatabase.js.Here is an example that will fail the database password security check when only
config.databaseURIis specified, but it should pass:The text was updated successfully, but these errors were encountered: