We are currently looking for a way to mask all the Smart objectS method rest API requests that is been called on the smart forms, when the security team ran a vunerality test, it was discovered that all the parameters can be seen and manipulated from the browsers, the request was loaded on the browsers they could intercept and manipulate the data, is there a way to encrypt all smart objects call from the browsers esp API calls to LOBs.
How can I Secure or Encrypt K2 SmartObjects API calls on Smartforms to avoid vulnerability
- Nintex Employee
Here are some ideas:
1. Make sure you are using the https protocol instead of http.
2. Check out this KB article for obfuscating method names (which is enabled by default): Capture Method Name in Fiddler Trace - Nintex Community
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.