Skip to content

feat: allow posting alerts service-to-service#5705

Merged
shahargl merged 3 commits intokeephq:mainfrom
piekarski-mateusz:feat/allow-in-cluster-alert-posting
Mar 2, 2026
Merged

feat: allow posting alerts service-to-service#5705
shahargl merged 3 commits intokeephq:mainfrom
piekarski-mateusz:feat/allow-in-cluster-alert-posting

Conversation

@piekarski-mateusz
Copy link
Contributor

@piekarski-mateusz piekarski-mateusz commented Mar 2, 2026
edited
Loading

Closes #5706

📑 Description

Allow trusted in-cluster services to POST alerts to Keep without requiring a Keep API key, using network-level authentication (e.g. Istio mTLS + AuthorizationPolicy) instead.

When the KEEP_ALLOW_MESH_ALERT_INGESTION environment variable is set to "true", requests to /alerts/event* that don't carry an API key or bearer token are accepted with the webhook role. Calling services can set the X-Service-Name HTTP header to identify themselves in logs and audit trails (defaults to "unknown").

✅ Checks

  • My pull request adheres to the code style of this project
  • My code requires changes to the documentation
  • I have updated the documentation as required
  • All the tests have passed

ℹ Additional Information

No breaking changes. The feature is entirely opt-in via an environment variable that defaults to "false". Existing deployments are unaffected.

@vercel
Copy link

vercel bot commented Mar 2, 2026

@piekarski-mateusz is attempting to deploy a commit to the KeepHQ Team on Vercel.

A member of the Team first needs to authorize it.

@dosubot dosubot bot added the size:L This PR changes 100-499 lines, ignoring generated files. label Mar 2, 2026
@greptile-apps
Copy link
Contributor

greptile-apps bot commented Mar 2, 2026

Target branch is not in the allowed branches list.

@dosubot dosubot bot added the Feature A new feature label Mar 2, 2026
shahargl
shahargl approved these changes Mar 2, 2026
View reviewed changes
Copy link
Member

@shahargl shahargl left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@dosubot dosubot bot added the lgtm This PR has been approved by a maintainer label Mar 2, 2026
@shahargl shahargl merged commit acc5698 into keephq:main Mar 2, 2026
13 of 15 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@shahargl shahargl shahargl approved these changes

Assignees

No one assigned

Labels

Feature A new feature lgtm This PR has been approved by a maintainer size:L This PR changes 100-499 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[➕ Feature]: allow for POSTing of alerts without a KEEP API KEY within a cluster

2 participants

@piekarski-mateusz @shahargl