[jboss-as7-dev] Secure HTTP API Endpoint
Brian Stansberry
brian.stansberry at redhat.com
Thu May 26 12:10:48 EDT 2011
On 5/26/11 10:04 AM, Remy Maucherat wrote:
> On Thu, 2011-05-26 at 10:51 -0400, Andrig Miller wrote:
>> I know that from the security side of things, we are trying to make
>> sure that usernames and passwords don't end up in configuration files.
>>
>> I think we should rope in Anil and company into this discussion.
>
> Ok, that makes sense too. But there shouldn't be any default user at
> all, esp with access to the admin features.
>
Before we do this we need to have a good strategy for quickly and easily
setting things up for dev use, demo use etc.
--
Brian Stansberry
Principal Software Engineer
JBoss by Red Hat
More information about the jboss-as7-dev
mailing list