Bug
The ArcGIS Portal Directory REST API reveals user information and allows for user enumeration via the user resource endpoint, even when accessed anonymously.
| Bug-ID-Nummer | BUG-000171101 |
|---|---|
| Eingereicht | September 30, 2024 |
| Zuletzt geändert | October 3, 2024 |
| Gilt für | Portal for ArcGIS |
| Gefunden in Version | 11.1 |
| Betriebssystem | Windows Server |
| Betriebssystemversion | 2022 |
| Status | As Designed |
Zusätzliche Informationen
When the portal is configured to share content with the public, it is necessary to wait for anonymous users to decide whether they trust the content. One aspect of trust is knowing who shared that content. This means that it is necessary for anonymous users to know the names of users who are creating content, adding comments, etc. This is a security feature that is common in most products that share content with the public.Schritte zur Reproduzierung
Bug-ID: BUG-000171101
Software:
- Portal for ArcGIS
Benachrichtigung erhalten, wenn sich der Status eines Bugs ändert
Weitere Informationen zu diesem Thema erkunden
Nach zugehörigen Informationen suchen
Nach Schulungen zu diesem Thema suchen
Ideen erkunden und Feedback geben
Unterstützung durch ArcGIS-Experten anfordern
Esri Support App herunterladen