Skip to content

S
spring-boot
Switch branch/tag
History Find file
  • Dave Syer's avatar
    Explicitly disable security on management endpoints if requested · 63a2d067
    Dave Syer authored 
    Previously the management endpoint filter was applied to all requests
if the user had disabled security.management.enabled, but since it
had no security applied it was letting all requests through.

The fix was to explicitly exclude the whole enclosing configuration
and carefully ignore the management endpoints in the normal security
chain.

Fixes gh-100.
    63a2d067
Name
Last commit
 Last update
..
spring-boot-sample-actuator Loading commit data...
spring-boot-sample-actuator-ui Loading commit data...
spring-boot-sample-amqp Loading commit data...
spring-boot-sample-aop Loading commit data...
spring-boot-sample-batch Loading commit data...
spring-boot-sample-data-jpa Loading commit data...
spring-boot-sample-data-mongodb Loading commit data...
spring-boot-sample-integration Loading commit data...
spring-boot-sample-jetty Loading commit data...
spring-boot-sample-profile Loading commit data...
spring-boot-sample-simple Loading commit data...
spring-boot-sample-tomcat Loading commit data...
spring-boot-sample-traditional Loading commit data...
spring-boot-sample-web-jsp Loading commit data...
spring-boot-sample-web-static Loading commit data...
spring-boot-sample-web-ui Loading commit data...
spring-boot-sample-websocket Loading commit data...
spring-boot-sample-xml Loading commit data...
README.md Loading commit data...
pom.xml Loading commit data...