Security tab for the admin panel

This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.

Total Posts: 2
Karma: 10
Joined: 10/30/2018
Location: Netherlands

Posted: 5 years ago

Hi all,

I've recently found out that the out-of-the-box nopCommerce installation doesn't have health checks. CMS' such as Umbraco have health checks, which also checks the security of an application. For example, whether a security header has been set.

Since nopCommerce doesn't have it yet, I thought "hey why not implement it myself?", and I've started beginning to brainstorm on some ideas. My company also supports this idea, so I can also work on it during working hours.

My initial idea is to create an extra security tab in the admin panel which does a security health check. The underlying idea would be to read out the web.config and/or make a request to the page to check whether security headers has been set. I will also copy some checks from the Umbraco health check and also the observatory tool by Mozilla.

What does the nop community think of the idea? I eventually want to merge this into the nopCommerce project. :)

New York

MVP

Total Posts: 11324
Karma: 100972
Joined: 5/22/2011
Location: United States

Posted: 5 years ago

There is a Warnings page; any additional checks would certainly be welcome :)

erikwu123

Total Posts: 2
Karma: 10
Joined: 10/30/2018
Location: Netherlands

Posted: 5 years ago

Wouldn't the warning page be too cluttered? I thought maybe a separate security tab only for security checks would be much more cleaner.

This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.

Still have questions or need help?

. Premium support services . Get dedicated support from the nopCommerce team with a guaranteed response within 24 hours.

. Online course for developers . Get the practical and technical skills you need to run and customize nopCommerce websites.