You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Inspired by the issue #578 by @pri-kise, I think a rule can be helpful to harding the security of fields used with Isolated Storage.
table50100 MyTable
{
fields
{
field(1; "My Secret"; Guid)
{
Access = Public; // Raise an diagnostic that the field should not be public
}
}
internalprocedure GetSecret() Secret: SecretTextbegin
IsolatedStorage.Get(Rec."My Secret", DataScope::Module, Secret);
end;
}
When a field is used to retrieve keys/values from the Isolated Storage, the field should not be public accessible.
The setting DataScope::Module already provides security hardening for retrieving the keys/values from the Isolated Storage.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Inspired by the issue #578 by @pri-kise, I think a rule can be helpful to harding the security of fields used with Isolated Storage.
When a field is used to retrieve keys/values from the Isolated Storage, the field should not be public accessible.
The setting DataScope::Module already provides security hardening for retrieving the keys/values from the Isolated Storage.
Beta Was this translation helpful? Give feedback.
All reactions