Open gr-hovest-atb opened 3 years ago
Currently, the API key value is stored in the metrics ID string which represents a severe security problem. A possible solution would be to store the API key values as (salted) hashed values.
Currently, the our newly added transmission of metrics (see #152) requires is synchronous with its receival. This could lead to performance problems.
After updating to Spring Boot 2, we are using the new
MeterRegistry
for counting calls in the gateway.This can be used as starting point for major improvements:
To be further discussed. This should be seen as a super-issue, while concrete development steps should be defined as smaller sub-issues.