Disabling /swagger and /api


#1

Hello,

I’d like to disable swagger help and api access completely and I have a few related questions:

  1. Is there any option in app.ini to disable both or any of them?
  2. Does gitea use its /api endpoints internally or is planned to do so?
  3. Is it safe to completely lock traffic to /swagger and /api at higher level (eg. firewall, proxy, www server)?

Regards,
Orzech


#2

Current, there is not. Please add an issue on github.


#3

Thanks for reply. I’ll submit a ticket, as you suggested.

Is /api endpoint used by Gitea’s web interface or will it be used that way in the future?