Empty user-agent in header when calling registry

Strech / avrora

A convenient Elixir library to work with Avro messages, schemas and Confluent® Schema Registry

https://hexdocs.pm/avrora

MIT License

98 stars 33 forks source link

Empty user-agent in header when calling registry #101

Closed azeemchauhan closed 1 year ago

azeemchauhan commented 1 year ago

Background AWS WAF's core managed rule group contains a rule that rejects requests missing a user-agent header. If the schema registry on AWS behind a WAF with this rule group, which blocks all requests. To avoid this, we should set a user agent in the HTTP header.

Reference:

Use AWS Managed Rules to prevent common attacks
- kafkajs/confluent-schema-registry