Open creckord opened 1 year ago
JoeyEamigh
commented
11 months ago Hey! I created a similar project heavily inspired by this one today which allows for not setting the project_id and proxying any project. I made it in only a few hours today so it might not be as solid as this project, feel free to give it a shot!
gbip
commented
8 months ago Currently, a whitelist of project_ids is required.
We are running a local Sentry instance, where projects are created in self-service, and would like to provide projects with the option to use a central tunnel instance for their public client deployments instead of each project having to roll their own.
Currently, this is not possible without unacceptable maintenance overhead due to the project whitelist. We do not really see a security benefit in our case to have this whitelist, and would like to opt out of it.
Could we maybe include a special value of
*or similar to explicitly allow any project_id? That would keep the config check, but give those wish to the option to opt out.I could try to contribute a patch, however I'm not really good in Rust.
I'll check this out whenever i have time !
Currently, a whitelist of project_ids is required.
We are running a local Sentry instance, where projects are created in self-service, and would like to provide projects with the option to use a central tunnel instance for their public client deployments instead of each project having to roll their own.
Currently, this is not possible without unacceptable maintenance overhead due to the project whitelist. We do not really see a security benefit in our case to have this whitelist, and would like to opt out of it.
Could we maybe include a special value of
*or similar to explicitly allow any project_id? That would keep the config check, but give those wish to the option to opt out.I could try to contribute a patch, however I'm not really good in Rust.