These are chat archives for spring-cloud/spring-cloud

26th
Jul 2017
Liel Chayoun
@lchayoun
Jul 26 2017 08:04
Hi, question about zuul, wanted to know if there is a way to specify that a specific endpoint is not secured?
Dave Syer
@dsyer
Jul 26 2017 09:20
On the zuul side?
I mean where is the endpoint?
Liel Chayoun
@lchayoun
Jul 26 2017 09:21
it is a route mapped by zuul in the zuul.routes property
Dave Syer
@dsyer
Jul 26 2017 09:22
So you can just use Spring Security in the normal way in your zuul server
Roi Ezra
@ezraroi
Jul 26 2017 09:22
yes, this is what we plan to do
but we want to have all confiugration in one place in the yml
so each ZuulRoute will have a property that says if it is secured or not
Dave Syer
@dsyer
Jul 26 2017 09:23
I guess you need a Spring Security configuration with placeholders in it then
Anyway, there's no property in zuul.routes.* that you can use to specify secure or non-secure.
Out of the box that is
You'd have to bind your own bean to it and pick up the secure flag in your security configuration
Liel Chayoun
@lchayoun
Jul 26 2017 09:25
great, thanks!
Marcelo Balloni
@mballoni
Jul 26 2017 14:51
Ribbon is in maintenance mode at Netflix (they don't use it in new apps any more) @dsyer
So, netflix is not using client side load balancing anymore ? Or something else?
James Howe
@OrangeDog
Jul 26 2017 14:53
Explained in the README: https://github.com/netflix/ribbon/
They do actually use it, just not all of it.
Marcelo Balloni
@mballoni
Jul 26 2017 15:00
@OrangeDog Wow, haven't seen that.
They use exactly what I'm using =D
Thanks
James Howe
@OrangeDog
Jul 26 2017 15:04
There's a pretty good chance that if they need a new feature they'll just switch to their proprietary tech rather than make any changes to ribbon