(activemq-website) branch main updated: NO-JIRA clarify new Jolokia security feature in Artemis release doc

Mon, 07 Apr 2025 13:49:27 -0700 

This is an automated email from the ASF dual-hosted git repository.

jbertram pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/activemq-website.git


The following commit(s) were added to refs/heads/main by this push:
     new a9ca1aaf2 NO-JIRA clarify new Jolokia security feature in Artemis 
release doc
a9ca1aaf2 is described below

commit a9ca1aaf27c83a027aa468871c7764510039c240
Author: Justin Bertram <[email protected]>
AuthorDate: Mon Apr 7 15:49:06 2025 -0500

    NO-JIRA clarify new Jolokia security feature in Artemis release doc
---
 src/components/artemis/documentation/latest/versions.html | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/src/components/artemis/documentation/latest/versions.html 
b/src/components/artemis/documentation/latest/versions.html
index 09e94d6c8..5e3b16a32 100644
--- a/src/components/artemis/documentation/latest/versions.html
+++ b/src/components/artemis/documentation/latest/versions.html
@@ -431,6 +431,12 @@ The categorized resource tabs which were available 
previously are now the main a
 These tabs offer a paged view which is filterable and sortable and scales well 
for resource heavy use-cases.</p>
 </div>
 <div class="paragraph">
+<p>It&#8217;s also worth noting that any request with an origin header using 
the <code>https</code> scheme which is ultimately received by Jolokia via HTTP 
is now discarded by default since it is deemed insecure.
+If you use a TLS proxy that transforms secure requests to insecure requests 
(e.g. in a Kubernetes environment) then consider changing the proxy to preserve 
HTTPS and switching the <a href="embedded-web-server.html">embedded web 
server</a> to HTTPS.
+If that isn&#8217;t feasible then you can accept the risk by adding 
<code>&lt;ignore-scheme/&gt;</code> to <code>etc/jolokia-access.xml</code>.
+See the <a 
href="https://jolokia.org/reference/html/manual/security.html";>Jolokia 
documentation</a> for more details.</p>
+</div>
+<div class="paragraph">
 <p>The behavior and presentation should be more consistent overall, and 
anything that was possible before should still be possible since the underlying 
management API has not changed.</p>
 </div>
 <div class="paragraph">


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact

Reply via email to