Reputation:
Bluemix public CF App protect/private REST Endpoint
I have a public Bluemix CF APP which exposes a REST Service. I would like to have the option, that the public url bound to the CFApp would be inaccessible from outside. The REST Service itself should only be usable from other CF Apps in my org, for example over API Management. I don't want to implement an own security mechanism for it, because API Management provides already everything I need to control, which clients will access my service. So some kind of private route inside Bluemix public, only available to runtimes and services in my Bluemix organisation.
Upvotes: 1
Views: 161
Answers (1)
Reputation: 4339
This is not currently possible with IBM Bluemix, due to limitations in Cloud Foundry.
All bound routes are accessible from the external network.
If you want to have a private API exposed, you have the following options.
Add authentication to the REST API, managing the credentials as a user-provided service bound to all the apps. The API will be accessible externally but only by users with the credentials.
Use an application service, like a message queue, to expose an internal RPC-style API. Applications can bind to the same service and it will only be accessible internally.
Upvotes: 3
Related Questions
- Restrict sensitive information in bluemix without restricting access to space
- How to provide credentials for calling Key Protect service within Bluemix application?
- Bluemix Cloud Foundry REST API
- Restrict access to bluemix app
- Bluemix: Can I scan a Java ReST API using Application Security on Cloud
- Secure Gateway: Limit access to Bluemix app
- Bluemix API Management, secure the API implementation
- How to access REST api endpoints for Bluemix
- Bluemix Mobile Application Security - User Authentication
- How to authenticate users accesing my bluemix app?