Smart Router management endpoints are not authenticated

Solution Verified - Updated -

Issue

  • The RHPAM Smart Router allows management operations, such as removing a container, to be made by an unauthenticated user. The /mgmt/add and mgmt/remove endpoints should only be called with authentication.

Environment

  • Red Hat Process Automation Manager (RHPAM)
    • 7.x
  • Red Hat Decision Manager (RHDM)
    • 7.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In