Refactor discussion of management.security.*

Really fixes gh-595

Refactor discussion of management.security.*
Really fixes gh-595
b10456a2 · Dave Syer · 5077b6cc · b10456a2
Commit b10456a2 authored Apr 03, 2014 by Dave Syer
Hide whitespace changes
Inline Side-by-side

Showing with 11 additions and 3 deletions

production-ready-features.adoc ...oot-docs/src/main/asciidoc/production-ready-features.adoc +11 -3

No files found.
--- a/spring-boot-docs/src/main/asciidoc/production-ready-features.adoc
+++ b/spring-boot-docs/src/main/asciidoc/production-ready-features.adoc
@@ -293,13 +293,21 @@ Exposing management endpoints using the default HTTP port is a sensible choice f
 based deployments. If, however, your application runs inside your own data center you
 may prefer to expose endpoints using a different HTTP port.

-The `management.port` property can be used to change the HTTP port. Since your management
-port is often protected by a firewall, and not exposed to the public. If you have Spring
-Security on the classpath, you might also want to disable management security:
+The `management.port` property can be used to change the HTTP port.

 [source,properties,indent=0]
 ----
 	management.port=8081
+----
+
+Since your management
+port is often protected by a firewall, and not exposed to the public you might not need
+security on the management endpoints, even if your main application is secure. In that
+case you will have Spring
+Security on the classpath, and you can disable management security like this:
+
+[source,properties,indent=0]
+----
 	management.security.enabled=false
 ----