Icingaweb 2 and Graphite module security

Question

Icingaweb 2 and Graphite module security

talbaror opened this issue 9 years ago · 2 comments

Hi

I have monitoring system installed along with Graphite all works fine , but i have complains that getting into graphite initial page (below image)and consulting graphs metrics without any password is not desired.
My thought was to make initial Graphite page using Apache2 authentication will be enough along with https , but i know if i will do it Icingaweb2 will ask user password to be able visualize graphs.
So my question for you guys ,is there a way to secure initial Graphite page and to work seamless integration with Icingaweb2?
Thanks

Answer 1 · 2015-08-11T16:59:04.000Z

You should be able to allow the render endpoint used by the plug in to be auth free but the graphite site insist on credentials. Something like this might work

<Location />
  AuthType basic
  AuthName "Top Secret Beta!"
  AuthUserFile /etc/httpd/htpasswd.beta
  Require valid-user
</Location>

<Location /render>
   Allow from all
   Satisfy Any
</Location>

Answer 2 · 2015-09-03T09:29:52.000Z

Thanks :-)