fabiobrz
commented
4 years ago -
Using creaper-core and to issue CLI commands following doc at https://docs.wildfly.org/18/WildFly_Elytron_Security.html#configure-ssltls. This auto generates a self-signed cert so RestAssured must use relaxed HTTPS validation. This way the test calling the
/openapiendpooint via HTTPS succeedes. -
Next step: disable HTTP listener and check for WARN in log.
The endpoint should be exposed via HTTP per specs but Wildfly will allow access via HTTPS transport in case such a listener is configured.
Tests to verify that the /openapi endpoint will be available in such case and to evaluate WARNs.