Add auth to /metrics path
sadath-12 opened this issue Β· comments
Which OpenObserve functionalities are relevant/related to the feature request?
metrics
Description
Add auth to /metrics path so our system information can't be exploited
Proposed solution
Auth in similar way you did for logs
Alternatives considered
Not yet considered
For now, you can use the following annotation in nginx ingress:
nginx.ingress.kubernetes.io/configuration-snippet: |
location ~* ^/metrics {
return 404;
}
@prabhatsharma That will block access to the endpoint though.
Closing it with recommendation to handle it at ingress layer.