Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-11081

Realm DNS aliases can not be used to control access to realms

    XMLWordPrintable

    Details

      Description

      — Port to 14.5 too —

      "Create fully qualified domain name realm/DNS aliases, and use them to control access to the realms."

      https://backstage.forgerock.com/docs/am/5/install-guide#secure-openam-administration
      https://backstage.forgerock.com/docs/openam/13.5/admin-guide#secure-openam-administration

      Realm DNS aliases can not be used to control access to realms, because you can always navigate outside of the realm using the realm query string parameter. This also applies to previous versions of OpenAM.

        Attachments

          Activity

            People

            • Assignee:
              chris.lee Chris Lee
              Reporter:
              simon.harding Simon Harding
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: