发表新帖
发表新帖

Google App Engine inter module communication authorization

前端 未结
关注
1 990
庸人自扰
庸人自扰 2021-01-17 17:22

In the Google Docs it says

You can configure any manual or basic scaling module to accept requests from other modules in your app by restricting its h

1条回答
  • 失恋的感觉
    失恋的感觉 (楼主)
    2021-01-17 17:54

    I can confirm this is occurring, and I've reproduced the issue. The issue is being tracked over in the App Engine public issue tracker. Follow there for any updates.

    For now, I think it's much better to be manually-inspecting the X-Appengine-Inbound-Appid header, as this is managed by the infrastructure and can't be spoofed.

    You could also implement OAuth, but that adds overhead you may not want or need on a small app.

    0 讨论(0)
 看不清?
提交回复
热议问题