Add REST API

Question

Add REST API

weiss opened this issue 2 years ago · 4 comments

Include a mod_rest module to expose the eturnalctl commands via HTTP.

Answer 1 · 2022-08-04T17:58:23.000Z

Would be cool to add an endpoint for monitoring! Maybe return a number of active connections? Also, can setting whitelisted IPs for access to the Rest API would be nice!

Answer 2 · 2022-08-04T21:51:57.000Z

Would be cool to add an endpoint for monitoring! Maybe return a number of active connections?

Have you seen mod_stats_prometheus and the metrics it returns?

Answer 3 · 2022-08-05T00:38:17.000Z

Nice! 👏🏻 In terms of security is better to put a proxy server like Nginx in front of Prometheus port? The idea is to restrict which IPs can access that endpoint. The Internet is too dangerous 🥲

Answer 4 · 2022-08-05T06:11:46.000Z

In terms of security is better to put a proxy server like Nginx in front of Prometheus port? The idea is to restrict which IPs can access that endpoint.

Yes, I'd recommend using some reverse proxy like Nginx. For just restricting access based on IP addresses, some nftables/whatever rule would do the trick as well of course, but I guess it's generally not a bad idea to put a proper, battle-tested and full-featured web server in front of such API endpoints. (Plus in practice I often end up wanting to make different endpoints available on the same system via https://example.com/foo and https://example.com/bar, which requires a proxy anyway.)