This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
The following commit(s) were added to refs/heads/trunk by this push:
new d0aad01877 Improved: moves security advices from README to the "How to
secure your deployment" wiki page
d0aad01877 is described below
commit d0aad01877d2c385cdcbc594d3d6322605d9bc6d
Author: Jacques Le Roux <[email protected]>
AuthorDate: Thu Sep 25 16:38:10 2025 +0200
Improved: moves security advices from README to the "How to secure your
deployment" wiki page
---
README.adoc | 12 +-----------
1 file changed, 1 insertion(+), 11 deletions(-)
diff --git a/README.adoc b/README.adoc
index be9bf87af1..e226c5d9c1 100644
--- a/README.adoc
+++ b/README.adoc
@@ -225,18 +225,8 @@ The current workaround is to clone the repository and run
gradlew commands from
[CAUTION]
-====
-In production never use the credentials contained in demo data. Not only the
admin credentials, but all of them.
-
-Also we recommend to not use Windows Server in production because we are not
supporting specific Windows related security issues.
-====
-
-* If you want to use AJP on a non localhost OFBiz instance, you need to set
the value of allowedRequestAttributesPattern
-in framework/catalina/ofbiz-component.xml
-
-
You can find more information about security in OFBiz at
-https://ofbiz.apache.org/security.html[the official security page]
+https://ofbiz.apache.org/security.html[the site security page]
[[build-system-syntax]]
