Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: EAP 5.0.0.CR3
Affects Version/s: EAP 5.0.0.BETA
Component/s: Security
Labels:
- ProfileService
Environment:

JBAS r90750, EAP5 branch

The Profile Service can be accessed remotely via the non-EJB interface, which doesn't require authentication. This remote interface should be disabled in EAP. Here's a client that demonstrates using the unsecure interface:

https://svn.jboss.org/repos/jopr/trunk/etc/jbas5-jnp-client/

See also: http://www.jboss.org/community/wiki/RemoteAccesstoProfileService

Assignee:: Scott Stark (Inactive)

Reporter:: Ian Springer (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2009/07/01 5:13 PM

Updated:: 2009/09/02 2:01 PM

Resolved:: 2009/08/12 1:46 AM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates