Clement Chen created CLOUDSTACK-418:
---------------------------------------
Summary: Separate API endpoints for Admin/End user APIs
Key: CLOUDSTACK-418
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-418
Project: CloudStack
Issue Type: Improvement
Components: API
Affects Versions: 4.0.0
Reporter: Clement Chen
For security reasons customers might want to block remote access to root admin
APIs or limit access to domain admin APIs to certain IP addresses.
It can be easily done on WAF if we have separate API endpoints for root
admin/domain admin/end user APIs. For example, in case of VMWare vCloud
Director, APIs accessible only to system admins are under
http://hostname/cloud/api/1.0/admin/extension and this can be easily blocked on
a WAF.
We should consider separating API endpoints for admin/end user APIs.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
