remove references to old /varz endpoint

cloudfoundry · Jul 16, 2018 · bf1f9bd · bf1f9bd
1 parent 351e9e1
commit bf1f9bd
Show file tree

Hide file tree

Showing 4 changed files with 0 additions and 56 deletions.
diff --git a/docs/UAA-Security.md b/docs/UAA-Security.md
@@ -419,13 +419,6 @@ grant clients need not apply).
   * Client is authenticated
   * Client has authority `uaa.resource`
 
-### Management Information
-
-The `/varz` endpoint is protected by HTTP Basic authentication with
-credentials that are externalized via `uaa.yml`.  They have defaults
-(`varz:varzclientsecret`) and can also be overridden via System
-properties.
-
 ### Login Prompts
 
 The login endpoint is unsecured.  Any client can ask it and it will

diff --git a/docs/login/Login-APIs.md b/docs/login/Login-APIs.md
@@ -9,7 +9,6 @@
 		- [Token Endpoint: `POST /oauth/token`](#token-endpoint-post-oauthtoken)
 	- [Login Info: `GET /login`](#login-info-get-login)
 	- [Healthz: `GET /healthz`](#healthz-get-healthz)
-	- [Varz: `GET /varz`](#varz-get-varz)
 	- [Autologin](#autologin)
 		- [Obtain Autologin Code: `POST /autologin`](#obtain-autologin-code-post-autologin)
 
@@ -121,48 +120,6 @@ Unauthenticated.
 
 Returns "ok" in the response body if the server is up and running
 
-## Varz: `GET /varz`
-
-Reports basic management information about the Login Server and the
-JVM it runs in (memory usage etc.).  Secured with HTTP Basic
-authentication using credentials that are advertised on NATS in Cloud
-Foundry (for a standalone instance the default is
-`varz:varzclientsecret`).
-
-Request: `GET /varz`  
-Response Body:  
-
-    {
-      "type": "Login",
-      "links": {
-        "JMImplementation": "http://localhost:8080/uaa/varz/JMImplementation",
-        "spring.application": "http://localhost:8080/uaa/varz/spring.application",
-        "com.sun.management": "http://localhost:8080/uaa/varz/com.sun.management",
-        "Catalina": "http://localhost:8080/uaa/varz/Catalina",
-        "env": "http://localhost:8080/uaa/varz/env",
-        "java.lang": "http://localhost:8080/uaa/varz/java.lang",
-        "java.util.logging": "http://localhost:8080/uaa/varz/java.util.logging"
-      },
-      "mem": 19173496,
-      "memory": {
-        "verbose": false,
-        "non_heap_memory_usage": {
-          "max": 184549376,
-          "committed": 30834688,
-          "init": 19136512,
-          "used": 30577744
-        },
-        "object_pending_finalization_count": 0,
-        "heap_memory_usage": {
-          "max": 902299648,
-          "committed": 84475904,
-          "init": 63338496,
-          "used": 19173496
-        }
-      },
-      "spring.profiles.active": []
-    }
-
 ## Autologin
 
 For user-facing account management UIs (e.g. portal) that need to set

diff --git a/server/src/main/java/org/cloudfoundry/identity/uaa/audit/LoggingAuditService.java b/server/src/main/java/org/cloudfoundry/identity/uaa/audit/LoggingAuditService.java
@@ -25,8 +25,6 @@
 /**
  * Audit service implementation which just outputs the relevant information
  * through the logger.
- * <p>
- * Also accumulates count data for exposure through /varz
  *
  * @author Luke Taylor
  * @author Dave Syer

diff --git a/server/src/test/java/org/cloudfoundry/identity/uaa/test/UaaTestAccounts.java b/server/src/test/java/org/cloudfoundry/identity/uaa/test/UaaTestAccounts.java
@@ -117,10 +117,6 @@ public boolean isProfileActive(String profile) {
         return profile != null && environment.acceptsProfiles(profile);
     }
 
-    public String getVarzAuthorizationHeader() {
-        return getAuthorizationHeader("varz", "varz", "varzclientsecret");
-    }
-
     public String getAuthorizationHeader(String prefix, String defaultUsername, String defaultPassword) {
         String username = environment.getProperty(prefix + ".username", defaultUsername);
         String password = environment.getProperty(prefix + ".password", defaultPassword);