BPM Studio sends credentials in the clear?

1
+1
-1

I just started evaluating Bonitasoft. When I run the "Travel Request" example from BPM Studio I noticed that it opens the browser with the username and password in the URL. This looks like a big security hole. Is there an alternative configuration?

1 answer

1
0
-1

I talked about this problem with my colleague last week and he told me it was normal cause the studio is on DEBUG.

Comments

Submitted by ricardo.g on Tue, 07/15/2014 - 18:39

Can I disable/change this? I had selected "Run", not "Debug" by the way.

Notifications