Anonymous user access restricted

Check ID

APP_0007

Category

Security

Summary

Anonymous users should not be allowed to create persistent objects (= data stored in the database). If anonymous users are not restricted from creating data, it is possible for a hacker to overload your database and app by creating an unlimited number of objects.

Options

This check does not have any options.

Pass

The access rules in your app restrict anonymous users to only creating non-persistent objects.

Fail

The access rules in your app enable anonymous users to create persistent objects.

PreviousDefault admin username changed NextDefault admin user restricted

Last updated 2 years ago