izzy/UnrealEngineUWP
0
0
Fork 0
mirror of https://github.com/izzy2lost/UnrealEngineUWP.git synced 2026-03-26 18:15:20 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
bb66f7e357f055ee66628dfeb44b193db27d368a
UnrealEngineUWP/Engine/Plugins/VirtualProduction/RemoteControlWebInterface/WebApp/_package.json
simon therriault 2e288b6fe8 Potential Security Issue, Login Screen 
Have addeda a FHttpRequestHandler as a RequestPreprocessor which checks whether or not an Requests Header has a corresponding ApiKey to allow the execution, using MD5 hashing to obscure it a bit.
This affects Http Calls and Websocket Calls. Changes Wrapped RCWebsocketRequest to allow holding hashed ApiKeys from the outside. Mainly hooked as an additional Handler in WebRemoteControl.

#jira UE-139210
#rb simon.therriault, amir.keren
#preflight 622113f2c7262e0e538118cf
#lockdown alejandro.arango

#ROBOMERGE-OWNER: simon.therriault
#ROBOMERGE-AUTHOR: patrick.gross
#ROBOMERGE-SOURCE: CL 19252881 in //UE5/Release-5.0/... via CL 19257182
#ROBOMERGE-BOT: UE5 (Release-Engine-Staging -> Main) (v924-19243027)

[CL 19263496 by simon therriault in ue5-main branch]
2022-03-04 03:45:11 -05:00

16 lines
483 B
JSON
Raw Blame History

{
"name": "conductor",
"version": "0.3.63",
"scripts": {
"postinstall": "concurrently \"cd ./Client && npm install && cd ..\" \"cd ./Server && npm install && cd ..\"",
"build": "node ./Scripts/build.js",
"dev": "concurrently \"cd ./Client && npm start && cd ..\" \"cd Server && npm start && cd ..\"",
"start": "pushd Server && npm run serve && popd"
},
"dependencies": {},
"devDependencies": {
"concurrently": "^5.3.0",
"fs-extra": "^9.0.1"
}
}
Reference in New Issue View Git Blame Copy Permalink