-
Type: Task
-
Resolution: Unresolved
-
Priority: Major - P3
-
None
-
Affects Version/s: None
-
Component/s: Security
-
None
-
Server Security
For 4.0 we ensured that listCommands could be run by unauthenticated clients pre-auth for compatibility reasons. While this was merely maintaining the status quo from 3.6, minimizing the number of requiresAuth=false commands is desirable. We should revisit the behavior of listCommands with less of a time constraint.