Skip to content

issue 23628 admin site api#33973

Draft
wezell wants to merge 29 commits intomainfrom
issue-23628-management-api
Draft

issue 23628 admin site api#33973
wezell wants to merge 29 commits intomainfrom
issue-23628-management-api

Conversation

@wezell
Copy link
Copy Markdown
Member

@wezell wezell commented Dec 2, 2025
edited
Loading

ref: #23628

This PR creates the idea of a canonical ADMIN_SITE_URL which is the URL that the customer MUST use to manage their sites site. If ADMIN_SITE_URL config variable is set then any admin URLs, e.g. /dotAdmin will not be available on any other domain that points to the environment. It will also automatically set the x-robots-tag: noindex, nofollow on the admin site to prevent the admin domain getting indexed as well.

The ADMIN_SITE_URL can only be set as a ENV or system config variable.

Lots of config switches:

  • ADMIN_SITE_ENABLED : boolean. This functionality is disabled by default and can be enabled by setting this variable to true
  • ADMIN_SITE_URL : String. the main canonical url for all admin requests - this is protocol :// domain (:optional port), e.g. https://admin.dotcms.com or https://my.supersite.com:8443.
  • ADMIN_SITE_REQUESTS_FORCE_SECURE : boolean. defaults to false, can be set to force https (or 8082) for all admin requests
  • ADMIN_SITE_REQUEST_HEADERS : comma separate list. response headers to add to request to admin sites. Defaults to x-robots-tag: noindex, nofollow
  • ADMIN_SITE_REQUEST_DOMAINS: comma separate list. These domains will automatically be considered as "admin only" domains. These values are automatically added to this list:
"dotcms.com",
"dotcms.site",
"dotcms.io",
"dotcms.host",
"dotcms.cloud",
"dotcmscloud.com",
"localhost"
  • ADMIN_SITE_REQUEST_DOMAINS_EXCLUDE : comma separate list. remove these domains from the list of admin domains
  • ADMIN_SITE_REQUEST_URIS : comma separate list. uris that should be considered as "admin only" uris. These values are already added to this list:
"/html/",
"/admin/",
"/c/",
"/servlets/",
"/categoriesservlet/",
"/dwr/",
"/dotajaxdirector",
"/dotscheduledjobs",
"/dotadmin/",
"/jsontags/",
"/edit/",
"/servlet/"
  • ADMIN_SITE_REQUEST_URIS_EXCLUDE : comma separate list. Remove these URIS as admin URIs

@github-actions github-actions bot mentioned this pull request Dec 2, 2025
Closed
@wezell wezell changed the title issue 23628 management api issue 23628 admin site api Dec 2, 2025
wezell added 19 commits December 2, 2025 15:51
@wezell
Merge branch 'main' into issue-23628-management-api
cec70cc
@wezell
feat(management): adding AdminSiteAPI, disabled by default.
26b2bbf 
ref: #23628
@wezell
feat(management): adding AdminSiteAPI, disabled by default.
518c3e1 
ref: #23628
@wezell
feat(management): adding AdminSiteAPI, disabled by default.
6d144cd 
ref: #23628
@wezell
feat(management): adding AdminSiteAPI, disabled by default.
dd8bfbc 
ref: #23628
@wezell
feat(management): adding AdminSiteAPI, disabled by default.
37cc0d9 
ref: #23628
@wezell
feat(management): fixing test
ad16b1c 
ref: #23628
@wezell
Merge remote-tracking branch 'origin/main' into issue-23628-managemen…
16099f5 
…t-api
@wezell
feat(management): fixing test
071396d 
ref: #23628
@wezell
feat(management): fixing test
ae003fd 
ref: #23628
@wezell
feat(management): moving config to config tab
a5c0484 
ref: #23628
@wezell
feat(management): moving config to config tab
2a2b94a 
ref: #23628
@wezell
feat(management): do not set to session if nothing has changed.
4693cc0 
ref: #23628
@wezell
Merge branch 'main' into issue-23628-management-api
4d9e493
@wezell
Merge branch 'main' into issue-23628-management-api
42a3519
@wezell
feat(admin): fixing merge conflicts
234820f 
ref: #23628
@wezell
feat(admin): fixing merge conflicts
17ac630 
ref: #23628
@wezell
feat(admin): fixing merge conflicts
33d1e0c 
ref: #23628
@wezell
feat(admin): fixing the siteAdmin functionality.
8a79938 
ref: #23628
@github-actions
Copy link
Copy Markdown

github-actions bot commented Feb 9, 2026

This PR is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 7 days.

@github-actions github-actions bot added the stale label Feb 9, 2026
@github-actions
Copy link
Copy Markdown

github-actions bot commented Feb 17, 2026

This PR was closed because it has been stalled with no activity.

@github-actions github-actions bot closed this Feb 17, 2026
@wezell wezell reopened this Mar 5, 2026
@github-actions github-actions bot added the Area : Backend PR changes Java/Maven backend code label Mar 5, 2026
@github-actions github-actions bot removed the stale label Mar 6, 2026
@wezell wezell marked this pull request as draft April 3, 2026 15:41
@claude
Copy link
Copy Markdown
Contributor

claude bot commented Apr 3, 2026
edited
Loading

Claude finished @wezell's task in 2m 40s —— View job

Claude finished @wezell's task in 1m 29s —— View job

I'll analyze this and get back to you.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

AI: Safe To Rollback Area : Backend PR changes Java/Maven backend code

Projects

dotCMS - Product Planning
Status: No status

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@wezell