Latest update: 7.0.4
- Overview
- Secret Stores, Certificates and Keys
- Secure Authentication
- Protect REST Endpoints With Authorization and Access Control
- Secure Passwords
- Secure Network Connections
- Protect IDM Data
- Encoding Attribute Values
- Structure of an Encrypted Object
- Encrypting and Decrypting Properties Over REST
- Securing the Repository
- Protecting Sensitive Files and Directories
- Removing or Protecting Development and Debug Tools
- Adjusting Log Levels
- Disabling the API Explorer
- Disabling Automatic Configuration Updates
- Managing Privacy & Consent
- Securing IDM Server Files With a Read-Only Installation
- Authentication and Session Module Configuration
Disabling the API Explorer
The REST API Explorer serves up REST API documentation. The API Explorer can help you identify endpoints, and run REST calls against those endpoints. To protect production servers from unwanted API descriptor requests, set the following property in your resolver/boot.properties file:
openidm.apidescriptor.enabled=false