dindinet / jsonengine

Automatically exported from code.google.com/p/jsonengine
1 stars 0 forks source link

_createdBy and _updatedBy property in the JSON response may disclose user email #10

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
_createdBy and _updatedBy property in the JSON response may disclose user 
email. Should it be another secure user ID, or should we use SSL for all the 
communication?

Original issue reported on code.google.com by kazunori...@gmail.com on 15 Jul 2010 at 2:57

GoogleCodeExporter commented 9 years ago

Original comment by kazunori...@gmail.com on 15 Jul 2010 at 3:18

GoogleCodeExporter commented 9 years ago
We're introducing "display name" for each user as a substitute for the user IDs.

Original comment by kazunori...@gmail.com on 7 Nov 2010 at 7:18