Is the Glowroot Collector protocol secure?

Skip to first unread message

David Mulligan

Oct 19, 2017, 10:55:07 AM10/19/17
to Glowroot
Hi Trask,

I am a new Glowroot user and I would like to start by saying thank you for this great tool.  I am amazed by how simple and useful it is. 

I anticipate the need to run the Glowroot collector outside of our DMZ.  I also anticipate getting this question from our IT team.  According to the documentation grpc communicates over HTTP/2 so is the grpc protocol itself secure?   There can potentially be sensitive information in the request parameters and possibly other data I haven't thought of.

Thanks again,

Trask Stalnaker

Oct 19, 2017, 1:17:28 PM10/19/17
to Glowroot
Hi David,

Thanks for the kind words.

Currently the gRPC communication is not secure.  You will want to follow, I've been working on this locally and it should be available in the next month or so.


Trask Stalnaker

Nov 21, 2017, 11:25:06 PM11/21/17
to Glowroot
gRPC over HTTPS is now supported in version 0.9.27. For configuration instructions, see (and if using a Central Collector Cluster also see

Reply all
Reply to author
0 new messages