Is there any way to control access authentication for the JSON-RPC and HTTP API?

[PikaZ76]

I have deployed a Tron node, and for security reasons, I want to implement measures to restrict access to its interfaces.

Does the Tron node have any built-in configuration that supports this functionality, or do I have to rely on additional measures like a proxy to achieve it?

[abn2357]

No built-in configuration

[Sunny6889]

As far as I can see, currently java-tron itself only provide rate and connect limits. You could find them in config file.

[halibobo1205]

https://besu.hyperledger.org/public-networks/how-to/use-besu-api/authenticate, JSON-RPC authentication @eodiandie. We could give it a try.

[waynercheung]

https://besu.hyperledger.org/public-networks/how-to/use-besu-api/authenticate, JSON-RPC authentication @eodiandie. We could give it a try.

Hi,
I think this is a great proposal and I’m quite interested in it.
I previously raised an issue related to JSON-RPC, and we can develop the authentication functionality for the JSON-RPC interface together.

[waynercheung]

https://besu.hyperledger.org/public-networks/how-to/use-besu-api/authenticate,

According to the document mentioned above, besu supports two authentication methods:

• Username and password
• JWT public key.

I think we can supports these two methods for Tron.

Besides that, I will do some search to find if there is a specification about the authentication for eth jsonrpc apis.

[PikaZ76]

@waynercheung that's great! it's could be better if Tron get build-in authentication !