Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ensure that only the headhunter and the owner see user information #154

Closed
0jonjo opened this issue Jan 26, 2025 · 0 comments · Fixed by #155
Closed

Ensure that only the headhunter and the owner see user information #154

0jonjo opened this issue Jan 26, 2025 · 0 comments · Fixed by #155
Assignees
@0jonjo
Labels
enhancement New feature or request

Comments

@0jonjo
Copy link
Owner

0jonjo commented Jan 26, 2025

Describe the feature

  • Only the user themselves and their assigned headhunter should have access to their complete profile information, including applications and other sensitive data.
  • Implement more robust token checks in all API calls to ensure data access is only granted to authorized users.
  • Write comprehensive unit tests to cover various scenarios of API requests with different tokens in all relevant controllers.
@0jonjo 0jonjo added the enhancement New feature or request label Jan 26, 2025
@0jonjo 0jonjo self-assigned this Jan 26, 2025
@0jonjo 0jonjo added this to All Jobs Jan 26, 2025
@0jonjo 0jonjo moved this to In Progress in All Jobs Jan 26, 2025
@0jonjo 0jonjo linked a pull request Feb 2, 2025 that will close this issue
[154] Ensure that only the headhunter and the owner see user information #155
Merged
@0jonjo 0jonjo mentioned this issue Feb 2, 2025
Merged
@0jonjo 0jonjo moved this from In Progress to Done in All Jobs Feb 2, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@0jonjo 0jonjo

Labels
enhancement New feature or request
Projects
All Jobs
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[154] Ensure that only the headhunter and the owner see user information 0jonjo/alljobs
1 participant
@0jonjo