https://www.growthbook.io/ logo
Join Slack
Powered by
Hi, how do I put an auth behind :3100 port which s...
# announcements
m
Hi, how do I put an auth behind :3100 port which serves the api information? as in our production deployment we don’t want it to be open publically, now say we are able to put auth, then how will growthbook dashboard still work with this?
@fresh-football-47124 can you please help? also I can see that under sdk endpoints section, encrypted field is NO. I am trying to productionize growthbook in my company so this would help.
f
ok
how are you access the feature flag endpoint?
from client side?
m
I am accessing it using an endpoint like 
<http://localhost:3100/api/features/prod_>......
from SDKs section which is publically open
f
is the SDK running on the browser, like with JS?
or only server side?
if it’s client side, you can’t put authentication
m
sdk is running on client side, like any service which’s using growthbook for feature flags
but just doing a get request on the endpoint mentioned above, which is public, how should I add auth to that?
f
do you want your site usable by the general public?
m
yes I want product managers to be able to use growthbook that’s why but also want some security behind the api endpoint so that not everyone can see it publically, say outside company
f
all they get is a list of features - unfortunately as the flags and experiments must be evaluated in the SDK, there is no way to hide them completely - you can use the encrypted endpoint to obscure what flags are there.
m
I see.. how to encrypt an endpoint? like is this feature only available using a license key?
f
yes
usually just seeing a list of features isn’t such a big deal
m
I see, cool then! thanks for the help 🙏
31 Views
Open in Slack
PreviousNext
Powered by