Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

API Security Defects, All access should be authorized, includes monitoring and internal communication #22796

Open
alex-quan-001 opened this issue Feb 18, 2021 · 2 comments
Open

API Security Defects, All access should be authorized, includes monitoring and internal communication #22796

alex-quan-001 opened this issue Feb 18, 2021 · 2 comments
Assignees
@nolouch
Labels
component/pd feature/discussing This feature request is discussing among product managers

Comments

@alex-quan-001
Copy link

Bug Report

1. Minimal reproduce step (Required)

curl http://hostip:2379/pd/api/v1/regions

2. What did you expect to see? (Required)

Only authorized to access data, use password or other encryption methods
All access should be authorized, includes monitoring and internal communication

3. What did you see instead (Required)

Return data directly

4. What is your TiDB version? (Required)

Release Version: v5.0.0-rc
Edition: Community
Git Commit Hash: fd4437d
Git Branch: heads/refs/tags/v5.0.0-rc
UTC Build Time: 2021-01-12 06:00:03
GoVersion: go1.13
Race Enabled: false
TiKV Min Version: v3.0.0-60965b006877ca7234adaced7890d7b029ed1306
Check Table Before Drop: false
@alex-quan-001 alex-quan-001 added the type/bug The issue is confirmed as a bug. label Feb 18, 2021
@zz-jason
Copy link
Member

@bb7133 could you take a look?

@nolouch
Copy link
Member

nolouch commented Dec 13, 2021

I think it's a feature, ref tikv/rfcs#62

@nolouch nolouch added feature/reviewing This feature request is reviewing by product managers feature/discussing This feature request is discussing among product managers and removed feature/reviewing This feature request is reviewing by product managers type/bug The issue is confirmed as a bug. severity/moderate labels Dec 13, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nolouch nolouch

Labels
component/pd feature/discussing This feature request is discussing among product managers
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@jebter @cosven @zz-jason @nolouch @alex-quan-001