We use the web console as a standalone application deployed on a Jetty instance.
And we need to secure web access to it with ssl and user/password authentication.
We need to have a session timeout and to force re-input of the credentials on each session expiry.
As BASIC authentication does not allow easily to force login again on each HTTP session expiration I have to add a login form and a default session expiration of 30 minutes.
I am attaching to this request the git patch proposal containing:
- a new file login.html (modified copy of 403.html)
- the modified site.css
- and the modified web.xml (with extra <session-config>)
The Git patch is made on the current 5.11 SNAPSHOT.
The top commit at the moment I cloned the project from Git on the master branch is:
Author: gtully <email@example.com>
Date: Thu Dec 11 14:40:56 2014 +0000
https://issues.apache.org/jira/browse/AMQ-5483 - fix and test - assigned group counts are updated when lru map evicts a group assignment