ace-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Marcel Offermans (JIRA)" <j...@apache.org>
Subject [jira] [Closed] (ACE-460) Provide a way to automate client access to an ACE server using a script
Date Thu, 17 Apr 2014 08:56:44 GMT

     [ https://issues.apache.org/jira/browse/ACE-460?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Marcel Offermans closed ACE-460.
--------------------------------

    Resolution: Fixed

Closed all issues I just reopened and targeted for 'next' release.

> Provide a way to automate client access to an ACE server using a script
> -----------------------------------------------------------------------
>
>                 Key: ACE-460
>                 URL: https://issues.apache.org/jira/browse/ACE-460
>             Project: ACE
>          Issue Type: New Feature
>          Components: Client Repository
>            Reporter: Herko ter Horst
>            Assignee: Marcel Offermans
>            Priority: Minor
>             Fix For: next
>
>         Attachments: ACE-460.patch
>
>
> In our use case (automatic deployment of bundles and ACE configuration settings from
Bndtools), we would benefit from a way to automate client access to an ACE server using a
(Gogo) script.
> The attached patch provides a GogoServlet, intended to be used as part of an ACE client,
that accepts Gogo scripts as input (in a "script" parameter) an executes them.
> Note that while the commands in the script are subject to normal ACE server authentication
when they are executed, the ScriptServlet itself is NOT secured in any way as of yet. Client
security will need to be addressed more broadly, as the RESTServlet has the same problem.
While there does not seem to be an immediate risk to ACE servers and targets, it leaves longer
running ACE clients vulnerable.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message