Uploaded image for project: 'Red Hat Fuse'
  1. Red Hat Fuse
  2. ENTESB-9487

Hawtio HTTP security enhancements aren't applied to Spring Boot applications

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • fuse-7.2
    • fuse-7.1
    • Hawtio
    • None
    • % %
    • Fuse 7.2 Sprint 34

      ENTESB-7876 doesn't work on a Spring Boot application with the following configuration:

          public static void main(String[] args) {
              System.setProperty("hawtio.http.strictTransportSecurity", "max-age=31536000; includeSubDomains; preload");
              System.setProperty("hawtio.http.publicKeyPins", "pin-sha256=\"...\"; max-age=5184000; includeSubDomains");
              SpringApplication.run(YourSpringBootApplication.class, args);
          }
      

            rhn-support-tasato Tadayoshi Sato
            rhn-support-tasato Tadayoshi Sato
            Lucia Drozdova Lucia Drozdova (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: