Adding TLS and HTTP Auth support to JMX_EXPORTER

[an...@pydev.io]

Hi ,
I have added TLS and basic HTTP auth support to JMX_EXPORTER .
Anyone interested in this functionality , worth committing it back ?
Thanks

[Brian Brazil]

Our policy is that we don't provide TLS, authentication, authorisation or any other security features. See https://www.robustperception.io/prometheus-security-authentication-authorization-and-encryption/

--

Brian Brazil

www.robustperception.io

[Jasmine Hegman]

While Brian's answer is perfectly on point, I want to mention that JMX Exporter already supports some configuration over whether JMX connection should be done over SSL, so it may be worth learning more about this contribution incase it is around that side of things which might fall slightly outside of that umbrella?

https://github.com/prometheus/jmx_exporter

My apologies if that is out of line!

[anton....@gmail.com]

While currently JMX_EXPORTER supports connecting to SSL protected remote JMX port . What I am trying to add is a protection to HTTP endpoint .
In our case protecting JMX with NGINX means adding side container to every POD we run ( unfeasible given a size of organisation and number of teams running on K8s ) . So we are currently planning to exist in a branch that supports SSL protection and at least basic authentication to HTTP endpoint .

[yariv...@gmail.com]

have you branched in some public git? I'm also interested in the same capability; securing the metric endpoint.