From 6a336f8bc11b80846ed86e188fa6e5da18524d69 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Gabriel=20Beims=20Br=C3=A4scher?= <gabriel@pcextreme.nl>
Date: Mon, 22 Jul 2019 08:52:02 -0300
Subject: [PATCH] server: disable unauthenticated integration.api.port by
 default (#3504)

Set integration.api.port to (0) zero as default. CloudStack provides CloudStack API Unauthenticated Access through port 8096. It should not be open to the Internet in any case.
---
 server/src/main/java/com/cloud/api/ApiServer.java | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/server/src/main/java/com/cloud/api/ApiServer.java b/server/src/main/java/com/cloud/api/ApiServer.java
index a8ab7b095c6..cc9ec73c94e 100644
--- a/server/src/main/java/com/cloud/api/ApiServer.java
+++ b/server/src/main/java/com/cloud/api/ApiServer.java
@@ -228,8 +228,8 @@ public class ApiServer extends ManagerBase implements HttpRequestHandler, ApiSer
     private static final ConfigKey<Integer> IntegrationAPIPort = new ConfigKey<Integer>("Advanced"
             , Integer.class
             , "integration.api.port"
-            , "8096"
-            , "Default API port"
+            , "0"
+            , "Integration (unauthenticated) API port. To disable set it to 0 or negative."
             , false
             , ConfigKey.Scope.Global);
     private static final ConfigKey<Long> ConcurrentSnapshotsThresholdPerHost = new ConfigKey<Long>("Advanced"