-
Type: Improvement
-
Status: Resolved
-
Priority: Minor
-
Resolution: Fixed
-
Affects Version/s: 5.4.0.1
-
Component/s: Dashboard / OpenSocial (deprecated)
-
Impact type:API change
When Shindig fetches some data from Nuxeo it currently use a "hack" to propagate JSESSIONID.
The correct solution is to use Signed Fetched between Shindig and Nuxeo.
For security reason, the shared key will be shared in memory and dynamically generated at startup time.