-
Bug
-
Resolution: Won't Do
-
High
-
Honolulu Release
-
None
Sonarcloud identified the following security bugs in your project and, as agreed by the TSC, should be fixed within the Honolulu release. Any not finished in Honolulu must be fixed within the Istanbul release. Follow each of the URLs for details on each each bug, along with recommended fixes.
If any of the links below fail, please find your code on the master list found at <https://sonarcloud.io/organizations/onap/issues?resolved=false&sonarsourceSecurity=weak-cryptography>.
Project: onap_portal
Component: onap_portal:ecomp-portal-BE-common/src/main/java/org/onap/portalapp/portal/scheduler/client/HttpsBasicClient.java
Message: Enable server hostname verification on this SSL/TLS connection.
Severity: CRITICAL
Line: 123
Effort: 5min
Creation-Date: 2018-02-01T21:10:02+0100
URL: https://sonarcloud.io/project/issues?id=onap_portal&issues=AXBW6eizRfKbo15bdaSP&open=AXBW6eizRfKbo15bdaSP
Project: onap_portal
Component: onap_portal:ecomp-portal-BE-common/src/main/java/org/onap/portalapp/portal/scheduler/client/HttpsBasicClient.java
Message: Enable server hostname verification on this SSL/TLS connection.
Severity: CRITICAL
Line: 154
Effort: 5min
Creation-Date: 2018-02-01T21:10:02+0100
URL: https://sonarcloud.io/project/issues?id=onap_portal&issues=AXBW6eizRfKbo15bdaSQ&open=AXBW6eizRfKbo15bdaSQ