[
https://issues.apache.org/jira/browse/QPID-4253?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Philip Harvey updated QPID-4253:
--------------------------------
Description:
The web management interface added in QPID-3999 currently supports BASIC
authentication. When using HTTP this is an insecure authentication mechanism.
We should therefore allow support for this mechanism to be configurable rather
than being always enabled.
By default, we probably want BASIC to be only enabled for SSL connections.
was:The web management interface added in QPID-3999 currently supports BASIC
authentication. When using HTTP this is an insecure authentication mechanism.
We should therefore allow support for this mechanism to be configurable rather
than being always enabled.
> Make web UI support for BASIC authentication configurable
> ---------------------------------------------------------
>
> Key: QPID-4253
> URL: https://issues.apache.org/jira/browse/QPID-4253
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Reporter: Philip Harvey
> Priority: Minor
> Fix For: 0.19
>
>
> The web management interface added in QPID-3999 currently supports BASIC
> authentication. When using HTTP this is an insecure authentication mechanism.
> We should therefore allow support for this mechanism to be configurable
> rather than being always enabled.
> By default, we probably want BASIC to be only enabled for SSL connections.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
