[
https://issues.apache.org/jira/browse/FELIX-6168?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16906071#comment-16906071
]
Carsten Ziegeler commented on FELIX-6168:
-----------------------------------------
[~bosschaert] I think it would also make sense to require a specific
authentication plugin (by referencing some service property like a name, id
etc.). This way it can be ensured that the web console is only active if such
an auth plugin is available
> Disable username/password access to WebConsole
> ----------------------------------------------
>
> Key: FELIX-6168
> URL: https://issues.apache.org/jira/browse/FELIX-6168
> Project: Felix
> Issue Type: Bug
> Components: Web Console
> Affects Versions: webconsole-4.3.12
> Reporter: David Bosschaert
> Assignee: David Bosschaert
> Priority: Major
>
> It should be possible to disable plain username/password access to the
> WebConsole.
> When disabled, a simple user name and password (such as the default
> admin/admin) does not work any more.
> The WebConsole Security Provider should be the only enabled mechanism to log
> in.
> Disabling should happen through configuration or a framework property.
--
This message was sent by Atlassian JIRA
(v7.6.14#76016)
