[Koha-bugs] [Bug 20340] Ability to use authentication plugin
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Apr 24 02:22:18 CEST 2019
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20340
--- Comment #44 from David Cook <dcook at prosentient.com.au> ---
Just one final note... if this does make it into Koha, it'll be one of the
first things I disable when upgrading to a new release.
I think plugins are awesome but also dangerous when wielded by people without
enough knowledge.
(For instance, EBSCO have made an authentication plugin, which was installed by
a librarian, and I discovered that it had a number of security vulnerabilities.
I've sent in pull requests to patch them, but I never would've installed that
plugin without reviewing it first. However, the librarian didn't even think to
verify the contents of the plugin.)
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list