How to disable an HTTP method in a BW application
Article ID: KB0074683
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix BusinessWorks | 5.14.x, 5.13.x |
Description
We may have a requirement to restrict some HTTP methods like GET, PUT, DELETE, TRACE, OPTIONS, etc, for some specific applications that use this HTTP protocol
To achieve this in BW 5.x we can use the property bw.plugin.http.server.restrictHttpMethods
This property specifies the HTTP methods that can be disabled. By default, none of the HTTP methods are restricted by the server. You can specify a comma-separated list of methods that are to be restricted. These restrictions are then applicable to all resources accessed on this server, for all roles. You cannot disable methods selectively for a particular service or for a particular server.
To achieve this in BW 5.x we can use the property bw.plugin.http.server.restrictHttpMethods
This property specifies the HTTP methods that can be disabled. By default, none of the HTTP methods are restricted by the server. You can specify a comma-separated list of methods that are to be restricted. These restrictions are then applicable to all resources accessed on this server, for all roles. You cannot disable methods selectively for a particular service or for a particular server.
Issue/Introduction
How to disable an HTTP method in a BW application
Resolution
For example, if you want to disable TRACE, PUT and DELETE method in a BW application then you should add below property in the tra file and restart the application.
---------------------
bw.plugin.http.server.restrictHttpMethods=TRACE,PUT,DELETE
---------------------
---------------------
bw.plugin.http.server.restrictHttpMethods=TRACE,PUT,DELETE
---------------------
Additional Information
Feedback
Yes
No
Powered by
