[Improvement]: AK/SK Leakage Security

[shouwangyw]

Search before asking

• [X] I have searched in the issues and found no similar issues.

What would you like to be improved?

The rest api should probably not be whitelist, as this may expose the user's AK/SK, we need to think about a better way to provide OpenAPI.

How should we improve?

No response

Are you willing to submit PR?

• [ ] Yes I am willing to submit a PR!

Subtasks

No response

Code of Conduct

• [X] I agree to follow this project's Code of Conduct

[XBaith]

Thanks for reporting this issue. I reproduce this issue in my dev enviorment.

[XBaith]

Currently we can remove AK/SK in our configs and inject temporary iam credential via vended-credentials