漏洞
A redirect URL is not added by default to an application created from ArcGIS Developers Dashboard.
| 漏洞 ID 编号 | BUG-000167433 |
|---|---|
| 已提交 | May 14, 2024 |
| 上次修改时间 | June 5, 2024 |
| 适用范围 | ArcGIS Platform |
| 找到的版本 | N/A |
| 操作系统 | N/A |
| 操作系统版本 | N/A |
| 状态 | As Designed |
附加信息
This is the correct behavior for an OAuth 2.0 application. Redirect URLs, if so desired, must be added by the user. Refer to https://developers.arcgis.com/documentation/mapping-apis-and-services/security/tutorials/add-redirect-uri/ or https://developers.arcgis.com/documentation/mapping-apis-and-services/security/ for high-level view of ArcGIS application security best practices and https://developers.arcgis.com/documentation/mapping-apis-and-services/security/oauth-2/.解决办法
- Open the ArcGIS Developer Dashboard and the application in the OAuth 2.0 tab.
- Click the Edit Application button.
- Scroll to the Redirect URLs section and add 'urn:ietf:wg:oauth:2.0:oob' to the URL.
重现步骤
漏洞 ID: BUG-000167433
软件:
- ArcGIS Platform
当漏洞状态发生变化时获得通知
发现关于本主题的更多内容
搜索相关信息
查找与此主题相关的培训
探索想法并提供反馈
获取来自 ArcGIS 专家的帮助
下载 Esri 支持应用程序