jehan,
A safer option would be to use a dev cas instance that is only accessible to
subnets and VPN pools used only by the developers. As long as it's mostly
stable (99% uptime), devs would be rarely inconvenienced. This assumes that you
have a full dev infrastructure (LDAP, databases, etc).
An
We have a similar situation. To mitigate the potential risks, we allow the
localhost service registrations to facilitate developers work, but only in
our non-production CAS environments, and they must be on one of our
networks (or VPNs) and not some random public IP address.
On Thu, Jul 11, 2024
