TLS/SSL is required along with authentication of the HTTPS requests. I’m not
familiar with Heroku but the Proxy must authenticate the incoming connections.
Nginx has basic auth and is a fast proxy, for instance.
A cheap, dirty, and not recommended unless it is your only option, is to set
your
Shane,
A whole different perspective to this, still involving private networks, is
to deploy all the apps that need to access PIO directly onto the same
network. No auth required!
Or, peer the PredictionIO private network with other cloud resources, such
as Salesforce org IP restrictions.
On
Hi Shane,
As you've found, PredictionIO itself does not include a complete
authorization solution. A general solution is to isolate PredictionIO from
the internet on a private network, and then implement a gateway/proxy to
authorize and route traffic to PredictionIO eventserver and engine query
