We're updating the issue view to help you get more done. 

Make REST services stateless and update admin UI to use basic auth

Description

The REST APIs are using the existing session cookie for the administrative interface rather than requiring that the calls include basic authentication information. This works for a single instance, but not in clustered environments. Turn of session state for REST and update admin interface to use basic authentication on all calls.

Environment

None

Status

Assignee

DerekA

Reporter

DerekA

Labels

None

Components

Fix versions

Priority

Major