stackoom
  简体   繁体   中英

Spring Boot Actuator - Cannot disable /info endpoint

 原文  2015-12-21 16:14:59       java/ spring-boot/ spring-boot-actuator

Question

I tried disabling all actuator endpoints for production environment in application.yml configuration file: 

endpoints.enabled: false

It works for all endpoints except for /info. How can I turn off all endpoints for given environment?

UPDATE:

Project I am working on is also acting as Eureka client. In documentation for Spring Cloud Netflix in section Status Page and Health Indicator ( http://cloud.spring.io/spring-cloud-netflix/spring-cloud-netflix.html ) it says that "Eureka instance default to "/info" and "/health" respectively".

Is there any solution to disable those endpoints?

I was able to disable /health endpoint with endpoints.enabled: false , but not the /info endpoint.

2 answers

solution1
 12 ACCPTED  2015-12-24 09:56:14

Finally I managed to solve my problem. I enabled only /info and /health endpoints in actuator. And to allow access to /info endpoint only to users with role ADMIN I needed to mix actuator management security and spring security configuration.

So my application.yml looks like this: 

endpoints.enabled: false

endpoints:
    info.enabled: true
    health.enabled: true

management.security.role: ADMIN

And spring security configuration like this (where I needed to change order of ManagementSecurityConfig to have higher priority): 

@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
public class SecurityConfiguration {


    @Configuration
    protected static class AuthenticationSecurity extends GlobalAuthenticationConfigurerAdapter {

        @Autowired
        private AuthenticationProvider authenticationProvider;

        public AuthenticationSecurity() {
            super();
        }

        @Override
        public void init(AuthenticationManagerBuilder auth) throws Exception {
             auth.inMemoryAuthentication().withUser("admin").password("secret").roles("ADMIN");
        }
    }

    @Configuration
    @Order(Ordered.HIGHEST_PRECEDENCE + 2)
    public static class ManagementSecurityConfig extends WebSecurityConfigurerAdapter {


        @Override
        protected void configure(HttpSecurity http) throws Exception {
            http.csrf().disable()
                    .requestMatchers()
                    .antMatchers("/info/**")
                    .and()
                    .authorizeRequests()
                    .anyRequest().hasRole("ADMIN")
                    .and()
                    .httpBasic();
        }
    }

    @Configuration
    public static class ApiWebSecurityConfigurationAdapter extends WebSecurityConfigurerAdapter {

        protected void configure(HttpSecurity http) throws Exception {
            // API security configuration
        }

    }
}

solution2
 0  2015-12-22 06:23:26

Your sample configuration looks suspicious to me. I guess you meant 

endpoints:
  enabled: true

In any case, I just tried to add this to a vanilla Spring Boot app (using 1.3.1 and all endpoints were disabled (as expected).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question /actuator/info Endpoint not working with spring boot 2.5.0 Display build timestamp in Spring Boot actuator info endpoint How to get the version of Spring Boot in the /info actuator endpoint Spring Boot Actuator - Java Endpoint Spring Boot Actuator Endpoint Override Spring boot 2.6 actuator info Spring boot 2 - Actuator endpoint, where is /beans endpoint Spring boot application - how to show the dependency JAR version used in actuator info endpoint Spring Boot 2 Actuator /health endpoint not showing additional info when using authentication Return 404 on Spring Boot /actuator root endpoint
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM