Skip to content

Issues/453 security improvements#454

Merged
hhund merged 22 commits intodevelopfrom
issues/453_Security_Improvements
Apr 14, 2026
Merged

Issues/453 security improvements#454
hhund merged 22 commits intodevelopfrom
issues/453_Security_Improvements

Conversation

@hhund
Copy link
Copy Markdown
Member

@hhund hhund commented Apr 14, 2026

  • fixed inverted token cache timeout logic
  • improved ETag values to fix regression
  • improved CSP for Binary resources, new inline display for Binary content
  • removed exception message from status service error return, improved log
  • improved session timeout config, new error handling code in UI
  • improved yaml config
  • improved handling of untrusted input
  • improved client certificate checks
  • refactored db code to generate query json parameters via objectmapper
  • improved session cookie config
  • refactored code, added equals/hashCode impls to Identity classes
  • removed access token claim log messages
  • refactored code, improved oidc / jwks handling (use='sig', min RSA)
  • enforced https for jwks and token endpoints from oidc config
  • improved validation of db username/group config parameters
  • improved xml transformer config

closes #453

hhund added 21 commits March 23, 2026 15:18
@hhund
improved xml transformer config
b89c512
@hhund
improved validation of db username/group config parameters
7e2de0e
@hhund
enforced https for jwks and token endpoints from oidc config
bdeddf3
@hhund
refactored code, improved oidc / jwks handling (use='sig', min RSA)
31c2e97
@hhund
removed access token claim log messages
cc0bb71
@hhund
refactored code, added equals/hashCode impls to Identity classes
d7b4e74
@hhund
improved session cookie config
5cc0061
@hhund
refactored db code to generate query json parameters via objectmapper
37c0282
@hhund
improved client certificate checks
c6d3698
@hhund
improved handling of untrusted input
58edc26
@hhund
improved yaml config
e0b6cf0
@hhund
improved session timeout config, new error handling code in UI
f4ecb00 
If the FHIR servers answers with a redirect to the OIDC provider due to
an invalidated session Task resources to be created and
QuestionnaireResponse resource to be updated are stored in the browsers
session storage. After the redirect returns from the OIDC provider input
elements are pre-filled from the stored resources and the send button
scrolled into view. The send button blinks twice to get the users
attention.
@hhund
removed exception message from status service error return, improved log
5103d0e
@hhund
improved CSP for Binary resources, new inline display for Binary content
454c119 
* Improved Content-Security-Policy Header config for Binary resources.
* New Content-Type header value sanitizer filter to remove internal
parameters (pretty, summary, inline, etag) before returning the value to
the user.
* New inline display mode for binary resource content. HTML and Text
content is displayed via iframe and open full-screen. Other media types
are not displayed inline but can be displayed full-screen. Query
parameter _format=inline returns binary content (if accepted by the
client) without sending a "Content-Disposition: attachment ..." header.
@hhund
Merge remote-tracking branch 'origin/develop' into security_improvements
037103f
@hhund
Merge remote-tracking branch 'origin/develop' into security_improvements
053c80b
@hhund
improved ETag values to fix regression
60afac7 
- FHIR R4 specification enforces week ETags with the value being equal
to the resource version number. ETag value for standard FHIR requests
can not contain any other characters. ETags follow the specification
again, except for frontend HTML responses.
- Fixed no ETag send if resource has not lastUpdated value. HTTP header
values for "Last-Modified" and "ETag" not set independently.
- Added HTTP header "Vary" with value "Accept" to improve potential
caching behavior for FHIR json/xml responses that use the same ETag
value.
@hhund
Merge remote-tracking branch 'origin/develop' into security_improvements
e600797
@hhund
Merge remote-tracking branch 'origin/develop' into security_improvements
c43c3b8
@hhund
fixed inverted token cache timeout logic
d3ca59b
@hhund
Improved websocket session handling
7d25fea
@hhund hhund added this to the 2.1.0 milestone Apr 14, 2026
@hhund hhund requested a review from schwzr April 14, 2026 07:21
@hhund hhund self-assigned this Apr 14, 2026
@hhund hhund linked an issue Apr 14, 2026 that may be closed by this pull request
Improve Security / Defense-in-Depth #453
Closed
github-advanced-security[bot]
github-advanced-security AI found potential problems Apr 14, 2026
View reviewed changes
Comment thread dsf-fhir/dsf-fhir-server/src/main/java/dev/dsf/fhir/help/ResponseGenerator.java Fixed
@hhund hhund merged commit 3f30749 into develop Apr 14, 2026
49 of 53 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@schwzr schwzr schwzr approved these changes

+1 more reviewer

@github-advanced-security github-advanced-security[bot] github-advanced-security[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@hhund hhund

Labels

None yet

Projects

None yet

Milestone

2.1.0

Development

Successfully merging this pull request may close these issues.

Improve Security / Defense-in-Depth

3 participants

@hhund @schwzr @github-advanced-security