evernat
commented
9 years ago When you use the Liferay plugin, Authentication and portal "Administrator" role are required to access the monitoring page, as said here: https://github.com/evernat/liferay-javamelody (Login first as Administrator before accessing the monitoring page.)
So, you don't need to use the authorized-users parameter to secure the monitoring. If you still use authorized-users parameter, you will first need to login as Administrator and then you will need to enter username and password for the monitoring.
Can we close this issue?
enderwig70
ranjithchittuluri
I want to secure the context monitoring for the javamelody liferay hook on a liferay 6.1.2-ce-GA3. I've tested it with the 1.53.0 version and added the filter with the parameter "authorized-users" for BASIC authentication, as explained in https://code.google.com/p/javamelody/wiki/ReleaseNotes#1.53.0
When i go tho the url http://hostname:8080/monitoring i receive:
HTTP Status 403 - Forbidden access type Status report message Forbidden access description Access to the specified resource has been forbidden. Apache Tomcat/7.0.40
It doesn't ask for a username or password and i get no errors in the catalina.out log. It's very similar to https://code.google.com/p/javamelody/issues/detail?id=420
I did something wrong?