Best Practices - OxalisCommunity/oxalis-ng GitHub Wiki
Securing Oxalis
By default, Oxalis publish the web address listed in the table below. The table describes their use and give some hints on how to secure those addresses. A pretty standard scenario is to use some kind of load balancer and SSL offloader in front of the app server running Oxalis. This could be free/open software like Nginx and Apache or commercial software like NetScaler and BigIP. All such front-end software should be able to enforce security like the one suggested below.
| URL | Function | Transport | Security |
|---|---|---|---|
| oxalis-ng/status | Status information, for internal use and debugging | HTTP/HTTPS | Internet access can be blocked |