Skip to content

How can we improve the DocuWare Client?

← Client (English)

Encrypted URL: Return URL should not be allowed to be changed.

When using URL's for integration purposes, it should never be allowed that the user can change values in the return URL and get an answer from DocuWare. (When Username/Password or Token is inside the encrypted URL, this is already working! However, when the users log in with DocuWare credentials or uses SSO the return URL can be changed! In my opinion this is a possible data leak.

4 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Harry van der Meulen shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment

Client (English): General

Categories

Feedback and Knowledge Base

(thinking…)