[jboss-as7-dev] Secure HTTP API Endpoint

Remy Maucherat rmaucher at redhat.com
Thu May 26 11:04:46 EDT 2011


On Thu, 2011-05-26 at 10:51 -0400, Andrig Miller wrote:
> I know that from the security side of things, we are trying to make
> sure that usernames and passwords don't end up in configuration files.
> 
> I think we should rope in Anil and company into this discussion.

Ok, that makes sense too. But there shouldn't be any default user at
all, esp with access to the admin features.

-- 
Remy Maucherat <rmaucher at redhat.com>
Red Hat Inc



More information about the jboss-as7-dev mailing list