Securing a Gloop service
By default, Gloop services exposed as ad hoc HTTP endpoints are accessible to all clients. You can add security metadata for each Gloop service to restrict access to authorized users or groups only. To do this, follow the steps below:
- Right click the Gloop file you want to secure in the Coder Navigator view.
- Click Properties.
- Under Invoke, add the users and groups you want to authorize for the service.
There's a shortcut for quickly opening the Properties dialog
With the service selected, Press to display the Properties dialog.
Only users belonging to the list of authorized users or groups will be able to invoke the secured Gloop service's HTTP
endpoint(s). Under the hood, this process writes a security metadata file (
.security) to the file system.