Sidecar collector and Graylog API

Hello! I want to use graylog to process and store logs located on remote servers. To collect logs from remote servers, use Sidecar Collector, which is installed on these servers.
I’m interested in the following question:
Sidecar Collector periodically accesses some of the graylog API methods to get the settings. I need to restrict access to these open API methods so I want to know the addresses of these methods.

for reference: https://github.com/Graylog2/graylog2-server/issues/4677#issuecomment-375233995

would help

Thank you! I see that the Collector makes requests to the addresses “/plugins/org.graylog.plugins.collector/” and “/plugins/org.graylog.plugins.collector/collectors/”.
Are there any other methods of Graylog API to which anyone can make requests without authorization?
In fact, I want to allow access to such methods only for certain IP addresses.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.