mike1813
commented
12 months ago Fixed in branch 47 by addition of a new modelling error threat P.E.Pc-uCpS.9.
Closed mike1813 closed 12 months ago
mike1813
commented
12 months ago Fixed in branch 47 by addition of a new modelling error threat P.E.Pc-uCpS.9.
If a Client accesses a back-end Service via a transparent Proxy, and access to the Proxy is also controlled by an OAuth-style service, it must be because the OAuth-style service is also accessed via the Proxy. There should be a modelling error to detect when this is not the case, but this is missing from the domain model. See #47.