On 06.12.22 23:15, Julien Pivotto wrote: > > https://github.com/prometheus/prometheus/issues/1724 > > Quoting Brian in 2016: > > The question here is how complex do we want to allow scraping protocol > > to be, and how complex a knot are we willing to let users tie themselves > > in via the core configuration? Are we okay with making it easy for a > > scrape not to be quickly testable via a browser? At some point we have > > to tell users to use a proxy server to handle the more obscure use > > cases, rather than drawing their complexity into Prometheus. > > > > As far as I'm aware the use case here relates to a custom auth solution > > with a non-recommended network setup. It's not unlikely that the next > > request in this vein would be to make these relabelable, and as this is > > an auth-related request, per discussion on #1176 we're not going to do > > that. I think we'd need a stronger use case to justify adding this > > complexity. > > I do think that Brian's comments on authorization and security are still > valid, and I don't plan to add headers support to relabeling - such as I > don't plan to add relabeling for basic auth and other autorisation > methods.
Thank you very much. Yes, this all makes sense. I.e. no plans for support via relabeling, but allow users to do their special thing in special cases via the config, even if that also opens up the possibility to build a foot gun. (BTW, I'm a fan of clearly documenting the dragons, so don't just add the config option, but put a warning sign next it describing the typical pitfalls, like creating metric endpoints that are inaccessible to browsers.) -- Björn Rabenstein [PGP-ID] 0x851C3DA17D748D03 [email] [email protected] -- You received this message because you are subscribed to the Google Groups "Prometheus Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/prometheus-developers/Y4/bTp4k4mlqSHWg%40mail.rabenste.in.
