Use a common prefix for internal endpoints#4339
Conversation
|
Reminder: Please consider backward compatibility when modifying the API specification.
Caused by: |
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request updates the debug and simulation API endpoints by prefixing them with /internal/, changing the path from /api/v1/debug/ to /api/internal/v1/debug/. These changes are consistently applied across the documentation, E2E tests, OpenAPI specification, and the API route handler. No critical issues found; I have no feedback to provide.
|
If a reverse proxy or load balancer has a rule "forward all |
AryanGodara
left a comment
AryanGodara
left a comment
There was a problem hiding this comment.
Minor note: the Prometheus metric labels emitted by the with_matched_path_metric (in api.rs1 but in L115, not in this diff) middleware will change (e.g. GET /api/v1/debug/order/{uid} → GET /api/internal/v1/debug/order/{uid}), so any Grafana panels filtering on the old labels will need updating.
I"m not sure if we have a dashboard which depends on this, or if the endpoints in that are hardcoded. But maybe worth a check.
MartinquaXD
left a comment
MartinquaXD
left a comment
There was a problem hiding this comment.
Putting restricted / permissioned endpoints under a common prefix makes sense to me.
internal feels like a poor name, though. I think restricted would be more fitting.
4 participants
Description
We now have a few endpoints that we don't want to expose to the public and every single one of them has a) a rule in WAF b) a rule on the infra level that exposes it to partners with an API key.
Instead of setting these every time we create a new internal endpoint we can use the same rules for all endpoints with the
/api/internalprefix.How to test
Existing e2e tests.