Bug 778390 (SOA-873)

Summary: SOA-P platform bug for: http://jira.jboss.com/jira/browse/JBPAPP-544
Product: [JBoss] JBoss Enterprise SOA Platform 4 Reporter: nwallace <nwallace>
Component: SecurityAssignee: Jim Ma <ema>
Status: CLOSED NEXTRELEASE QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: 4.2 Beta 1   
Target Milestone: ---   
Target Release: 4.2 CP03   
Hardware: Unspecified   
OS: Unspecified   
URL: http://jira.jboss.org/jira/browse/SOA-873
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-12-11 16:09:05 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description nwallace 2008-09-26 06:29:54 UTC 
Date of First Response: 2008-11-05 22:17:28
project_key: SOA

http://jira.jboss.com/jira/browse/JBPAPP-544 describes a problem in the EAP release - unprotected servlets. The SOA-P release will share the same problem.
Comment 1 nwallace 2008-09-26 06:29:54 UTC 
Link: Added: This issue depends JBPAPP-544
Comment 2 nwallace 2008-09-26 06:30:25 UTC 
Link: Added: This issue is related to SOA-329
Comment 3 nwallace 2008-09-26 06:30:56 UTC 
Can we have confirmation that fixes are in place for 4.2CP03.
Comment 5 Dana Mison 2008-11-25 06:25:34 UTC 
Release Note: The Status Servlet for the embedded Tomcat server now requires authentication.
Comment 6 Len DiMaggio 2008-12-11 16:09:05 UTC 
Verified fixed in 4.2 CP03 CR5

http://host:8080/status?full=true   

returns a 404 error

The user must use 

http://host:8080/web-console/status?full=true 

which does require authentication