You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@couchdb.apache.org by gi...@git.apache.org on 2017/09/15 17:25:32 UTC
[GitHub] calonso opened a new issue #823: Healthcheck endpoint authentication should be optional
calonso opened a new issue #823: Healthcheck endpoint authentication should be optional
URL: https://github.com/apache/couchdb/issues/823
## Expected Behavior
When setting `chttpd.request_valid_user`the healthcheck endpoint `/_up` should not be protected.
## Current Behavior
Setting `chttpd.request_valid_user` also requires `/_up` endpoint to be authenticated.
## Possible Solution
Either unprotect the `/_up` endpoint always, which doesn't sound like very dangerous as nothing but the health of the system is exposed there or make it configurable.
## Context
Currently some cloud providers (Google in this case) don't allow credentials to be given to healthcheck configurations. Setting `chttpd.request_valid_user` is something very desirable as you enforce authentication all over the place, but you can't combine both in this case as healthchecks will fail if auth is enforced.
## Your Environment
* Version used: 2.1.0~trusty
* Browser Name and version: Doesn't apply
* Operating System and version (desktop or mobile): Ubuntu 14.04
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
With regards,
Apache Git Services