It will be like broadcasting your tokens to rest of the users. If someone still wants to take the risk, we can tell them how to do it. But not have as part of standard product configuration.
On Mon, Nov 10, 2014 at 3:34 PM, Vijayaratha Vijayasingam <[email protected]> wrote: > > > On 10 November 2014 15:33, Vijayaratha Vijayasingam <[email protected]> > wrote: > >> Hi all; >> >> We have default REST APIs which are deployed in gateway, call 'https' >> oauth endpoints. >> When we regenerate application token, we call revoke API (REST API >> deployed at gateway) to clear cache entries. >> Currently, we restrict this API call only via 'https'. But we should >> allow user to access this api via 'http' too? If internal network is >> secured, users prefer to use 'http' to call gateway APIs? >> >> Thanks. >> -- >> -Ratha >> > > > > -- > -Ratha > -- /sumedha m: +94 773017743 b : bit.ly/sumedha
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
