security concern: singleton nature is not documented. #10

markstos · 2021-04-01T14:38:08Z

In my testing, if two projects are both loaded and use the authorized module, the state is shared between the two projects.

So if one project defines an edit user action and a second project defines an edit user action, the second would overwrite the first.

At a minimum, the documentation should disclaim the singleton behavior and note that it's only intended to be used by project at a time.

The text was updated successfully, but these errors were encountered:

and how to share state between multiple instances. Fixes tschaub#10

markstos mentioned this issue Apr 1, 2021

To "be safe by default", overwriting values should throw an error #11

Open

markstos added a commit to RideAmigosCorp/authorized that referenced this issue Apr 2, 2021

document singleton behavior, how to create new instances

e788510

and how to share state between multiple instances. Fixes tschaub#10

markstos linked a pull request Apr 2, 2021 that will close this issue

document singleton behavior, how to create new instances #15

Open

markstos added a commit to RideAmigosCorp/authorized that referenced this issue Apr 2, 2021

document singleton behavior, how to create new instances

d1a33fb

and how to share state between multiple instances. Fixes tschaub#10

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

security concern: singleton nature is not documented. #10

security concern: singleton nature is not documented. #10

markstos commented Apr 1, 2021

security concern: singleton nature is not documented. #10

security concern: singleton nature is not documented. #10

Comments

markstos commented Apr 1, 2021