Skip to content

001_0001 - AnonymousDisabled

Business apps must always require login

Disable anonymous/guest access in Project Security

Metadata

authors:
- Xiwen Cheng <x@cinaq.com>
category: Security
input: .*Security\$ProjectSecurity\.yaml
rulename: AnonymousDisabled
rulenumber: '001_0001'
scope: package
severity: HIGH

Description

No anonymous means every user must have valid login session or credentials

Remediation

Disable anonymous/guest access in Project Security

Test cases

# No test file found