In fact, the password never reaches the demo host server, because the angular demo application that you get from the host site runs in your browser. If you check the network flow from your browser, you will see that nothing is posted to the host. The angular app simply makes Rest Call to your local broker and thus the only traffic from the host server is the one used to get the html pages and scripts back to your browser. All the other connections are local connections on your own local network.
Concerning the CORS problem, I banged my head a little against the wall because the current jetty provided with ActiveMQ is not the latest one and I am not sure that it is possible to configure it to work properly (The version is deprecated). On the other hand, what we are doing with our own brokers is to simply copy the folder in the web apps of the broker itself because this way, the site that makes the rest call is hosted has the same origin as the Jolokia API. (Same port and same IP) We will update the Wiki as soon as we find a better way to do it. Thanks for the positive remarks, -- View this message in context: http://activemq.2283324.n4.nabble.com/ActiveMQ-web-console-tp4704522p4704572.html Sent from the ActiveMQ - User mailing list archive at Nabble.com.
