Circumstances
At the moment values are simply returned at the controller layer. The password for example is sent to other users. This should be more restrictive.
Recommended Solution
Some kind of implemented anonymization should be applied to return values in the controller layer.
Alternatives
Extra classes could be implemented in order to make anonymization unneeded.
holtvogt
commented
4 years ago
Circumstances At the moment values are simply returned at the controller layer. The password for example is sent to other users. This should be more restrictive.
Recommended Solution Some kind of implemented anonymization should be applied to return values in the controller layer.
Alternatives Extra classes could be implemented in order to make anonymization unneeded.