You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@couchdb.apache.org by gi...@git.apache.org on 2017/09/15 17:25:32 UTC

[GitHub] calonso opened a new issue #823: Healthcheck endpoint authentication should be optional

calonso opened a new issue #823: Healthcheck endpoint authentication should be optional
URL: https://github.com/apache/couchdb/issues/823
 
 
   ## Expected Behavior
   When setting `chttpd.request_valid_user`the healthcheck endpoint `/_up` should not be protected.
   
   ## Current Behavior
   Setting `chttpd.request_valid_user` also requires `/_up` endpoint to be authenticated.
   
   ## Possible Solution
   Either unprotect the `/_up` endpoint always, which doesn't sound like very dangerous as nothing but the health of the system is exposed there or make it configurable.
   
   ## Context
   Currently some cloud providers (Google in this case) don't allow credentials to be given to healthcheck configurations. Setting `chttpd.request_valid_user` is something very desirable as you enforce authentication all over the place, but you can't combine both in this case as healthchecks will fail if auth is enforced.
   
   ## Your Environment
   * Version used: 2.1.0~trusty
   * Browser Name and version: Doesn't apply
   * Operating System and version (desktop or mobile): Ubuntu 14.04
   
 
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services