Bug 777696 (SOA-211)

Summary: jUDDI index.html - lists inquiry and post servlets
Product: [JBoss] JBoss Enterprise SOA Platform 4 Reporter: Len DiMaggio <ldimaggi>
Component: SecurityAssignee: Mike Brock <cbrock>
Status: CLOSED WONTFIX QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 4.2 IR7CC: rruss
Target Milestone: ---   
Target Release: 4.3 GA   
Hardware: Unspecified   
OS: Unspecified   
URL: http://jira.jboss.org/jira/browse/SOA-211
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
soa-4.2.0-IR7.0.zip
Last Closed: 2008-09-29 11:57:36 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Len DiMaggio 2007-12-04 18:59:58 UTC
Date of First Response: 2008-08-07 11:06:17
project_key: SOA

This issue was originally logged as part of SOA-188

Description of problem:
The index.html file (server/*/deploy/juddi-service.sar/juddi.war/index.html) - http://hostname:8080/juddi/ displays inquiry and port servlets.

Version-Release number of selected component (IR or RC #, component ver)
soa-4.2.0-IR7.0.zip
How reproducible:
100%

Steps to Reproduce: 
1. Start up the server - go to host:8080/juddi

Actual results:

===========================
Welcome to JBoss JUDDI
This webapp accepts POST requests to:
/inquiry
/publish
===========================

Expected results:
A blank dispay would be better.

I'd recommend removing this text. It really doesn't add much security, but why advertise these servlets?

Additional info: (e.g., stack trace):

Attachments (e.g., server log):

Comment 1 Mike Brock 2008-08-07 15:06:17 UTC
Don't really see the justification in proceeding with this.

Comment 2 nwallace 2008-09-26 06:40:30 UTC
Link: Added: This issue related SOA-876