Skip to content

Add clear documentation in guides about blocking crucial API endpoints from the outside #12050

New issue
New issue
Open
Open
Add clear documentation in guides about blocking crucial API endpoints from the outside#12050
Labels
Component: ContainersAnything related to cloudy Dataverse, shipped in containers.Feature: APIFeature: API GuideFeature: Container GuideFeature: Installation GuideSize: 3A percentage of a sprint. 2.1 hours.Type: Featurea feature requestUser Role: SysadminInstalls, upgrades, and configures the system, connects via ssh
@poikilotherm

Description

@poikilotherm
poikilotherm
opened on Dec 17, 2025

Check and highlight for production setups in classic and/or containerized installations:

  1. Block /api/admin and /api/builtin-users in Dataverse with a policy
  2. Block these endpoints on the Reverse Proxy as well

Provide example snippets for this for Apache and NGINX (classic installations) as well as Traefik (Docker) and Ingress, Gateway API (Kubernetes).

This should be done in the Installation and Containerization Guides.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Component: ContainersAnything related to cloudy Dataverse, shipped in containers.Feature: APIFeature: API GuideFeature: Container GuideFeature: Installation GuideSize: 3A percentage of a sprint. 2.1 hours.Type: Featurea feature requestUser Role: SysadminInstalls, upgrades, and configures the system, connects via ssh

    Type

    No type

    Projects

    IQSS Dataverse Project

    Status

    No status
    Forschungszentrum Jülich

    Status

    No status

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions