Can you disable the passing of an unhandled exception to the client browser session?

ShinyProxy
1

We’ve recently just had a penetration test where the functionality implemented in R had an unhandled exception and passed the stack trace back to the client calling, including the lines of code that failed - while helpful, was a fail because of exposing the internals of the function to work out how to exploit it.

Can this be disabled?

2

Hi

First of all and just to be sure, if you see any java exceptions, please let me know. This should no longer happen in recent versions of ShinyProxy.

If you see the errors/exceptions from R in the app, I think this can solve your issue: Shiny - Sanitizing error messages

3

Perfect thank you. Will go try this.

1 Like