This is an automated email from the ASF dual-hosted git repository.
cziegeler pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/felix-antora-site.git
The following commit(s) were added to refs/heads/main by this push:
new 7f669a11 Update documentation for the webconsole
7f669a11 is described below
commit 7f669a11dff942a70f316c49c76b4bdf8f3b1888
Author: Carsten Ziegeler <cziege...@apache.org>
AuthorDate: Wed Mar 26 17:51:06 2025 +0100
Update documentation for the webconsole
---
modules/ROOT/pages/subprojects/apache-felix-web-console.adoc | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/modules/ROOT/pages/subprojects/apache-felix-web-console.adoc
b/modules/ROOT/pages/subprojects/apache-felix-web-console.adoc
index 94618d5e..f96cfd20 100644
--- a/modules/ROOT/pages/subprojects/apache-felix-web-console.adoc
+++ b/modules/ROOT/pages/subprojects/apache-felix-web-console.adoc
@@ -1,6 +1,6 @@
= Apache Felix Web Console
-
+NOTE: This documentation refers to the older version 4.x of the Apache Felix
Webconsole. For the latest version checkout
https://github.com/apache/felix-dev/tree/master/webconsole[this documentation].
The Apache Felix Web Console is a simple tool to inspect and manage OSGi
framework instances using your favourite Web Browser.
@@ -61,6 +61,9 @@ This is
https://issues.apache.org/jira/browse/FELIX-2086[considered a bug] and w
== Installation
To install just use your favourite current means of installing new bundles in
to the OSGi framework.
+
+NOTE: The webconsole does not provide a CSRF protection out of the box!
Therefore it is advisable to install additional software to protect the
webconsole. For example the bundle from
https://github.com/apache/sling-org-apache-sling-security[Apache Sling
Security] provides this additional protection. Make sure to use the latest
version (1.3.0 or higher).
+
For example using the Apache Felix shell console you might do:
> install
http://mirror.switch.ch/mirror/apache/dist/felix/org.apache.felix.webconsole-2.0.6.jar
