Web Sidecar Actuator

Secures Spring Boot's Actuator endpoints.

For more details about sidecars please have a look at ../web-sidecar-common.

Features

Allows for multiple users
Allows only specific endpoints per user
Only the password hashes are stored on the server side
The default built-in password-hasher is using SHA-256
Option to utilize password hash caching
- This might be helpful in environments with no SHA-256 hardware acceleration
- One of the following libraries is required on the class-path:
  - caffeine

Example configuration:

sse:
  actuator:
    users:
      # username = password
      # Hash is using SHA-256
      - username: actuator
        password-hash: 425edd11c26ae24d6726f66925c024ad7978400bd4ebb10bc943854ab93b3778
      - username: prometheus
        password-hash: 1809f7cd0c75acf34f56d8c19782b99c6b5fcd14128a3cc79aca38a4f94af3ff
        allowed-endpoints:
          - prometheus

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Web Sidecar Actuator

Features

FilesExpand file tree

README.md

Latest commit

History

README.md

File metadata and controls

Web Sidecar Actuator

Features