Skip to content

STOR-21033 storedge-api-client-php:Medium: nformation Exposure - Server Error Message #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
storablethucnguyen wants to merge 1 commit into
base: master
Choose a base branch
from
Open

STOR-21033 storedge-api-client-php:Medium: nformation Exposure - Server Error Message #2

storablethucnguyen wants to merge 1 commit into from
+19 −13

Conversation

@storablethucnguyen
Copy link

@storablethucnguyen storablethucnguyen commented Dec 17, 2025
edited
Loading

Jira Ticket STOR-21033

Flippers

  • flipper_fms_feature_name

Related PRs

  • Link to PRs from other projects

Purpose

Fix Information Exposure - Server Error Message vulnerability

Technical Summary

Using error_log to write error to log.

Merge Checklist

  • I have included new or updated tests for code logic changes
  • I have confirmed ticket's AC is up to date and these changes fulfill all of them
  • I have demoed UI changes to the Product Owner and Designer
  • I have added specific manual testing instructions to the ticket
  • I have added or updated applicable documentation
  • When I squash and merge this PR, I will remove insignificant commit messages

Screenshots

Verify in local development
Running samples.php in terminal
It needs to edit config as following to match with local configration

  $base_url = 'https://localable.io:3010/v1/';
  $api_key  = 'sesc'; // get in FMS data
  $api_secret = 'sesc'; // get in FMS data

  // Sample uuids
  $facility_uuid = '9df67dc0-293c-0135-3eed-10ddb1b10572'; // get in FMS data
  $unit_uuid = '9e017df0-293c-0135-3eed-10ddb1b10572'; // get in FMS data
  $tenant_uuid = 'b0948532-f8e6-46ce-b587-5d0218478506'; // get in FMS data
  $lead_uuid = '16a4a566-c3da-42d0-a73e-fbedc4dfdb33'; // get in FMS data
  $unit_group_uuid = '3623b02f-e41c-4f21-8db1-c9a79c73ae85'; // get in FMS data
STOR-21033-php-sample

Snyk code test
STOR-21033-snyk-code-test

@storablethucnguyen
Medium: nformation Exposure - Server Error Message
98ae727 
Signed-off-by: Thuc Nguyen <thuc.nguyen@storable.com>
@storablethucnguyen storablethucnguyen self-assigned this Dec 17, 2025
@storablethucnguyen storablethucnguyen changed the title STOR-21033 toredge-api-client-php:Medium: nformation Exposure - Server Error Message STOR-21033 storedge-api-client-php:Medium: nformation Exposure - Server Error Message Dec 29, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@evan-gauer evan-gauer evan-gauer approved these changes

@ramavyasg-storable ramavyasg-storable ramavyasg-storable approved these changes

Assignees

@storablethucnguyen storablethucnguyen

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@storablethucnguyen @evan-gauer @ramavyasg-storable