Project

General

Profile

Actions
Copy link

Story #31

open

Epic #29: Insecure Direct Object Reference (IDOR) Prevention

Validate Authorization for Object Access

Added by rashmita rout about 2 months ago. Updated about 2 months ago.

Status:
New
Priority:
High
Assignee:
Tingg BE
Target version:
-
Start date:
01/05/2026
Due date:
% Done:

0%

Estimated time:
Acceptance Criteria:

1. User cannot access other users’ records

2. Unauthorized access returns error

DOR:
No
Story Points:
Work Type:
Feature
User Impact:
Technical Area:
Release Narrative:
Planned Sprint:
Completed In Sprint:
Spillover Reason:
Deployment Reference URL:

Description

As a system, I want to ensure users can only access objects they are authorized to. Exposing direct references to database structures means allowing parts of your application, such as modules or classes, to directly interact with database tables, columns, or other structures.

Actions
Copy link
 #1

Updated by rashmita rout about 2 months ago

  • Priority changed from Medium to High
Actions
Copy link
 #2

Updated by rashmita rout about 2 months ago

  • Assignee set to Tingg BE
Actions
Copy link

Also available in: Atom PDF