Closed sduchesneau closed 1 year ago
What is the integrate with dauth
goal? So that the endpoint is authenticated?
I think that SSL and dauth
should be left out for now. We can showcase an example with Docker compose + nginx for reverse proxy and SSL if we want.
What is the
integrate with dauth
goal? So that the endpoint is authenticated?I think that SSL and
dauth
should be left out for now. We can showcase an example with Docker compose + nginx for reverse proxy and SSL if we want.
Two objectives here:
1) we don't have any ConnectWeb helpers for authentication or healthcheck. Adding connectweb server into our github.com/streamingfast/dgrpc package makes it easy for us to add more of those.
2) I'm certain that we will want to roll out a simple hosted kv store sooner rather than later. Having SSL+dauth integration will come up at that point. It is IMHO simpler to roll this out within dgrpc than to try to implement this with a front-end docker
I'm certain that we will want to roll out a simple hosted kv store sooner rather than later. Having SSL+dauth integration will come up at that point. It is IMHO simpler to roll this out within dgrpc than to try to implement this with a front-end docker
If we do it ourself, pretty sure it will be through k8s, hence why I think to reduce our maintenance/surface area, there is no point to have the tool support SSL/auth directly. We can definitely ask people to secure it they want they want.
I saying Docker more for example purposes where people could see how to do it. I'm even in favor of not showing anything related to that and simply putting a note in the doc/readme that SSL/auth should be managed by something else.
as discussed offline, the --listen-https
flag is required for us to deploy behind google load balancer (for which a self-signed cert is sufficient), but I won't implement any auth at the moment.
This should close https://github.com/streamingfast/substreams/issues/94
Connect web integration
https://github.com/streamingfast/substreams/issues/94
Requirements: