[
https://issues.apache.org/jira/browse/ACE-460?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Marcel Offermans updated ACE-460:
---------------------------------
Fix Version/s: next
> Provide a way to automate client access to an ACE server using a script
> -----------------------------------------------------------------------
>
> Key: ACE-460
> URL: https://issues.apache.org/jira/browse/ACE-460
> Project: ACE
> Issue Type: New Feature
> Components: Client Repository
> Reporter: Herko ter Horst
> Assignee: Marcel Offermans
> Priority: Minor
> Fix For: next
>
> Attachments: ACE-460.patch
>
>
> In our use case (automatic deployment of bundles and ACE configuration
> settings from Bndtools), we would benefit from a way to automate client
> access to an ACE server using a (Gogo) script.
> The attached patch provides a GogoServlet, intended to be used as part of an
> ACE client, that accepts Gogo scripts as input (in a "script" parameter) an
> executes them.
> Note that while the commands in the script are subject to normal ACE server
> authentication when they are executed, the ScriptServlet itself is NOT
> secured in any way as of yet. Client security will need to be addressed more
> broadly, as the RESTServlet has the same problem. While there does not seem
> to be an immediate risk to ACE servers and targets, it leaves longer running
> ACE clients vulnerable.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
