You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geronimo.apache.org by GitBox <gi...@apache.org> on 2020/02/27 08:32:13 UTC

[GitHub] [geronimo-metrics] rmannibucau commented on issue #3: Accepted hosts starts with match

rmannibucau commented on issue #3: Accepted hosts starts with match
URL: https://github.com/apache/geronimo-metrics/pull/3#issuecomment-591846660
 
 
   Hi,
   
   I had the same issue in k8s and didn't want to  add that cause a startsWith does not guarantee an "invader" machine can't do the call.
   
   I can see multiple options:
   
   1. (currently used) you disable the default security validator (setSecurityValidator on the endpoint)
   2. we support an explicit range (10.0.0.[1-10]), letting the deployer the responsability to open a breach or not
   3. more advanced/complex ones (like using jsr223 etc)
   
   wdyt?

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services