You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to Eclipse MicroProfile
As pointed out in issue #47, the current HealthCheck protocol requires Digest auth as a supported mechanism, and indicates that it should be the default. Is that something we do want to require for 1.0?
sst...@redhat.com
unread,
Aug 17, 2017, 9:21:54 PM8/17/17
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to Eclipse MicroProfile
More generally, what are the security requirements we define for the 1.0 spec? I would suggest relaxing the current security section of the spec to the following:
A producer MUST enforce security on all health check invocations if the context associated with the endpoint has been configured as secure.
A producer MAY ignore security for trusted origins (e.g., localhost)
HTTP Digest Auth SHOULD be one supported authentication mechanism.
MP-JWT Auth SHOULD be one supported authentication mechanism.
Heiko Braun
unread,
Aug 18, 2017, 7:08:38 AM8/18/17
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
That said, I would be much i favour if keeping the discussions on the github issues to keep it consistent.
Werner Keil
unread,
Aug 18, 2017, 7:28:45 AM8/18/17
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to Eclipse MicroProfile
I know, prefixing messages or tags can help a bit, but wouldn't a gitter channel similar to mp-metrics also be a good idea for some aspects of health?;-)