Expose metrics endpoint on 8080 #33
Description
Is your feature request related to a problem? Please describe.
For security reasons the webhook server should only be available on localhost 8888 so that only the external-dns container can access it and no other service in the cluster. To still be able to collect metrics using prometheus, the webhook container should expose metrics on the port 8080 (REF.
This is also backed in to the helm chart of external-dns. At the moment prometheus fails to scrape the metrics if the service monitor of the helm chart is enabled, because the webhook container doesn't expose the metrics on 8080.
Describe the solution you'd like
The metrics endpoint should be available on a different port than 8888 to enable secure metrics scraping.
Describe alternatives you've considered
Alternative: Scraping from the main server on 888
This would be insecure, since we would need to expose the webhook server without authentication to the whole cluster. Moreover it's not supported by the default helm chart of external-dns.
Search
- I did search for other open and closed issues before opening this.
Code of Conduct
- I agree to follow this project's Code of Conduct
Additional context
No response