|
|
|
@ -3260,9 +3260,9 @@ default. The `management.endpoints.web.exposure.include` property can be used to
|
|
|
|
the actuators.
|
|
|
|
the actuators.
|
|
|
|
|
|
|
|
|
|
|
|
If Spring Security is on the classpath and no other WebSecurityConfigurerAdapter is
|
|
|
|
If Spring Security is on the classpath and no other WebSecurityConfigurerAdapter is
|
|
|
|
present, all actuators other than `/health` and `/info` are secured by Spring Boot auto-configuration.
|
|
|
|
present, all actuators other than `/health` and `/info` are secured by Spring Boot
|
|
|
|
If you define a custom `WebSecurityConfigurerAdapter`, Spring Boot auto-configuration will back off and you will be in
|
|
|
|
auto-configuration. If you define a custom `WebSecurityConfigurerAdapter`, Spring Boot
|
|
|
|
full control of actuator access rules.
|
|
|
|
auto-configuration will back off and you will be in full control of actuator access rules.
|
|
|
|
|
|
|
|
|
|
|
|
NOTE: Before setting the `management.endpoints.web.exposure.include`, ensure that the
|
|
|
|
NOTE: Before setting the `management.endpoints.web.exposure.include`, ensure that the
|
|
|
|
exposed actuators do not contain sensitive information and/or are secured by placing them
|
|
|
|
exposed actuators do not contain sensitive information and/or are secured by placing them
|
|
|
|
|
Stephane Nicoll
6 years ago