Description
Note:
If you have a feature request, you should contact support so the request can be properly tracked.
I have contacted support as well.
Is your feature request related to a problem? Please describe.
My team is building an OAuth 2.0 integration with Datadog. We will act as the client and Datadog will act as the authorization server. When the integration is kicked off from the Datadog UI your system sends a 'domain' and 'site' query parameter to our service indicating to what URL we should deliver our authorization code request payload.
We will be checking the URL implied by these parameters to verify that:
- it is actually datadog
We will do this via an allow list.
I would like it to be possible to automatically generate this allow list by leveraging one of your programming language clients. That way we do not couple our system to following the release of new datadog endpoints.
AWS does this for example with their SDKs - users can automatically configure a client to a given 'region' without needing to know any particular details and if a URL comes from outside a system, that system can check the URL agains AWS's set.
Describe the solution you'd like
I would like the clients to expose URL validation capabilities that ensure a URL is a valid datadog URL.
Describe alternatives you've considered
- We will build an allow list ourselves until this is launched.A
- we will also rely on typescript as a fail safe since your client has type guards on configuring a client.
(1) is stronger than (2) and so while we will do both I would stll like to automate this.
Additional context
I have an open support ticket for this request. The case ID is 1671182