Skip to content

Home

Introduction

Development

Overview

IDEs

Services

Service manager

API Explorer

Securing a Gloop service

By default, Gloop services exposed as ad hoc HTTP endpoints are accessible to all clients. You can add security metadata for each Gloop service to restrict access to authorized users or groups only. To do this, follow the steps below:

  1. Right click the Gloop file you want to secure in the Coder Navigator view.
  2. Click Properties.
  3. Under Invoke, add the users and groups you want to authorize for the service.

Gloop service invoke permissions dialog

Gloop service invoke permissions dialog

There's a shortcut for quickly opening the Properties dialog

With the service selected, Press to display the Properties dialog.

Only users belonging to the list of authorized users or groups will be able to invoke the secured Gloop service's HTTP endpoint(s). Under the hood, this process writes a security metadata file (.security) to the file system.