[Question] How can we configure it to isolate requests from accessing these internal interfaces of shenyu-bootstrap?

apache / shenyu

Apache ShenYu is a Java native API Gateway for service proxy, protocol conversion and API governance.

https://shenyu.apache.org/

Apache License 2.0

8.43k stars 2.92k forks source link

[Question] How can we configure it to isolate requests from accessing these internal interfaces of shenyu-bootstrap? #5581

Open chaclus opened 3 months ago

chaclus commented 3 months ago

Question

As the entry point for traffic following load balancing, the Shenyu gateway directs all subdomains directly to shenyu-bootstrap. However, some API interfaces in shenyu-bootstrap are unauthenticated and can be accessed directly via domain + URI, such as /actuator, /actuator/env, etc. How can we configure it to isolate requests from accessing these internal interfaces of shenyu-bootstrap?

hql0312 commented 3 months ago

@chaclus in shenyu bootstrap , you can config the internal interface like this :

you can write a api start with /shenyu , such as /shenyu/detail

you can config health path in yaml , shenyu.health.paths

shenyu: 
health:
enabled: true
paths:
  - /actuator
  - /health_check