DEVHIDE
Login Or Sign up

WSO2 Enterprise Store 1.0.0: security

90 Views Asked by At

In WSO2 Enterprise Store 1.0.0 there is a lack of security on some aspects.

For example: several public files contain sensitive data as the location and clear password of keystores:

  • /store/config/publisher.json
  • /publisher/config/publisher.json

I'm still trying to figure why these data are needed on client side...

Is there any configuration setting to solve this issue?

security wso2 wso2-es
Original Q&A
1

There are 1 best solutions below

2
On

You can solve this issue by adding following URL mapping to the jaggery.conf inside both publisher and store apps. 

{
 "url": "/config/*",
 "path": "/"
}

Related Questions in SECURITY

Related Questions in WSO2

Related Questions in WSO2-ES

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.