1 month ago

Securing endpoint being used by our other server

Posted 1 month ago by rudexpunx

We have two servers running. One is typical webserver running our Laravel based website. The other one is a machine that runs constantly as well and works on repeated tasks. Once it finishes a task, it sends resulting data to webserver endpoint via POST request, which takes the data and stores it in database.

My question is, how would you secure the endpoint? We are using Passport for our API routes, but this one is different purpose - no user authentication and it's not a public endpoint. It would be nice to have just two keys on the machine that would allow webserver to authenticate its requests. Is there any package that would make a good fit for such a use case?


Please sign in or create an account to participate in this conversation.