Menu Search

7.16. HTTP Plugin

The HTTP Plugin provides the HTTP management channel comprising of the Web Management Console and the REST API.

7.16.1. Attributes

  • Basic Authentication for HTTP. It is set to false (disabled) by default.

  • Basic Authentication for HTTPS. It is set to true (enabled) by default.

  • SASL Authentication for HTTP. It is set to true (enabled) by default.

  • SASL Authentication for HTTPS. It is set to true (enabled) by default.

  • Session timeout is the timeout in seconds to close the HTTP session. It is set to 10 minutes by default.

  • CORS Allow Origins is a comma separated list of origins that are allowed to access the REST API. Set to '*' to allow all origins. Default is empty, meaning CORS is disabled.

  • CORS Allow Methods is a comma separated list of HTTP methods that are allowed to be used when doing CORS requests. Default value is "HEAD,GET,POST".

  • CORS Allow Headers is a comma separated list of HTTP headers that are allowed to be specified when doing CORS requests. Default value is "Content-Type,Accept,Origin,X-Requested-With".

  • CORS Allow Credentials is a boolean indicating if the resource allows requests with credentials. Default value is true.

7.16.2. Children

None

7.16.3. Lifecycle

Not supported

Important

NOTE: Changes to the Session Timeout attribute only take effect at broker restart.