How to disable an HTTP method in a BW application

How to disable an HTTP method in a BW application

book

Article ID: KB0074683

calendar_today

Updated On:

Products Versions
TIBCO ActiveMatrix BusinessWorks 5.14.x, 5.13.x

Description

We may have a requirement to restrict some HTTP methods like GET, PUT, DELETE, TRACE, OPTIONS, etc, for some specific applications that use this HTTP protocol

To achieve this in BW 5.x we can use the property bw.plugin.http.server.restrictHttpMethods

This property specifies the HTTP methods that can be disabled. By default, none of the HTTP methods are restricted by the server. You can specify a comma-separated list of methods that are to be restricted. These restrictions are then applicable to all resources accessed on this server, for all roles. You cannot disable methods selectively for a particular service or for a particular server.
 

Resolution

For example, if you want to disable TRACE, PUT and DELETE method in a BW application then you should add below property in the tra file and restart the application.

---------------------
bw.plugin.http.server.restrictHttpMethods=TRACE,PUT,DELETE
---------------------

Issue/Introduction

How to disable an HTTP method in a BW application

Additional Information

https://docs.tibco.com/pub/activematrix_businessworks/5.14.0/doc/pdf/TIB_BW_5.14_palette_reference.pdf?id=5#page=260
https://support.tibco.com/s/article/Tibco-KnowledgeArticle-Article-40320
Powered by Wolken Software