Securing Gloop Services
By default, Gloop Services exposed as ad hoc HTTP endpoints and are accessible to all users. You can add security metadata for each Gloop Service to restrict access to authorized users or groups only. To do this, follow the steps below:
- Right click the Gloop file you want to secure in the Coder Navigator view.
- Click Properties.
- Under Invoke, add the users and groups you want to authorize for the service.
With the service selected, Press Ctrl + I (or command + I on OSX) to display the Properties dialog.
Only users belonging to the list of authorized users or groups will be able to invoke the secured Gloop Service's HTTP
endpoint(s). Under the hood, this creates a security metadata file (
.security) which is added to the file system.