You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently I am unable to set a security-constraint just for the monitor page, without blocking the RUM for normal app users. This is because both components share the same URL (/monitoring and /monitoring?resource=boomerang.min.js respectively).
Although it's possible to write a servlet filter that detects the presence of boomerang.min.js in the URL, it's a bit cumbersome and can be easily avoided by exposing it in another URl.
This way, normal app users (without any "monitoring" role) can use the app and post RUM data, meanwhile only authorized users can access the stats pages.
The text was updated successfully, but these errors were encountered:
Currently I am unable to set a
security-constraintjust for the monitor page, without blocking the RUM for normal app users. This is because both components share the same URL (/monitoringand/monitoring?resource=boomerang.min.jsrespectively).Although it's possible to write a servlet filter that detects the presence of boomerang.min.js in the URL, it's a bit cumbersome and can be easily avoided by exposing it in another URl.
This way, normal app users (without any "monitoring" role) can use the app and post RUM data, meanwhile only authorized users can access the stats pages.
The text was updated successfully, but these errors were encountered: