Can the endpoint URL be separated from the admin console for security?

brenbrend · April 19, 2024, 9:53am

We want to set up OpenReplay in AWS where our SaaS product streams events to a public endpoint, but the admin console for session replay is secured behind a VPC.

However it seems the default deployment on EC2 in AWS results in a single URL https://openreplay.[mydomain].com for both the events endpoint and the admin console.

How could I secure the admin console separately to the events endpoint? eg.

https://openreplay-events.[mydomain].com
https://openreplay-admin.[mydomain].com (must be on VPN to access)

?

If that’s not possible then how could I secure the events URL in the gateway without exposing the admin console to the public? eg.

https://openreplay.[mydomain].com/post-events → routed via public gateway
https://openreplay.[mydomain].com/* → accessible on VPN

rajesh · April 21, 2024, 4:03am

You should be able to do blacklist the openreplay endpoint using following

openreplay -e

frontend:
  ingress:
    annotations:
      nginx.ingress.kubernetes.io/whitelist-source-range: 49.36.X.X/32

Topic		Replies	Views
Is there any predefined retention in S3? 🛠️ Deployment	1	30	April 17, 2024
How to retrieve userID Community Guides tracker	1	43	April 16, 2024
Admin cannot invite users Issues & Bugs	1	2	July 23, 2024
Question: How to remove a failed install from Ubuntu Questions & Answers deployment	1	4	July 15, 2024

Can the endpoint URL be separated from the admin console for security?

Related Topics