Cycle Logo

Add auth option to external log drain

feature-request

Please add auth option for external log drain requests. That way we can protect our log ingest endpoint by allowing only authorized agents.

Reference documentation here.

Proposed solution:

  • Add an optional write-only auth field in the logs config form.
  • If auth field not empty, add Authorization header with the value from auth field on requests to external log drain endpoint.

Example:

auth field contains value Basic YWRtaW46cGFzc3dvcmQ=, results in a header Authorization: Basic YWRtaW46cGFzc3dvcmQ=

This also allows for other types of auth, like Bearer and Api-Key tokens.

Jure Vengušt...

    Thanks Jure, I've added this to our internal feature request system and I'll update here as things progress. Great idea.

    Christopher Aubuchon...

    Hey Jure,

    We have a few people solving this today with a combination of IP lists + adding an ephemeral ?token=.. to their URLs, but adding an auth header does make sense. We'll get this in.

    Jake Warner...

Join the conversation

Sign in with your Cycle account to reply to this thread.

v2026.06.11.01 · © 2026 Petrichor Holdings, Inc.
Cookies

Cookies Preferences

We run basic, anonymous analytics by default to measure site traffic. By clicking "Accept," you allow additional cookies for advanced app improvements and tailored advertising. Choose what you share by clicking "Customize."