英文:
How to limit the domain that is allowed to access an azure resource
问题
我编写了一个使用Next.js的应用程序,并部署到Vercel。然而,我使用了Azure的一个名为"Azure Open AI"的服务。在我发送到Azure Open AI的请求中,请求头包含API密钥。我不希望用户能够获取这个API密钥并自行访问Azure Open AI。所以我想限制哪些域名可以访问Azure Open AI。请告诉我如何做到这一点。
英文:
I write an app next js and deployed to vercel . however I used azure service called azure open ai . In the request I send on azure open ai in the header of the request contains the api key . I don't want the user to be able to get this api key and access the azure open ai by themselves. so i want to restrict by domain can access to azure open ai . please show me how to do it
答案1
得分: 1
OpenAI 服务目前的可访问性有限,但根据我从Q&A中了解到的信息,资源配置与Cognitive Services家族相似,因此支持配置IP地址限制和私有VNet连接。如果您的调用服务有固定IP,这应该足够,但您还可以考虑Application Gateway以了解DNS名称作为前端过滤条件。
英文:
OpenAI service has limited accessibility at this time, but from what I've been able to glean from Q&A the resource configuration is common to the Cognitive Services family and so supports configuring IP address restrictions and private vnet connectivity. If your calling service has a fixed IP, this should be sufficient, but you could also consider Application Gateway for awareness of DNS names as frontend filtering criteria.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论