Filtering access to exposed RPC

I'm building a project where the node needs the RCP to be exposed to the outside of the server. I have looked at how Natrium, Nano Wallet Company, etc does it by running a middleware/server for filtering what RPC's are whitelisted etc. Perhaps the simplest solution is to fork one of those? Anyone had any experience with doing that? I'm not that used to python, so a bit hesitant to dive into it quite yet.

I was also wondering though if there has been any considerations into have some kind of access control to the RPC's on the node directly? This could be both with regards to deciding which commands it would allow, and/or perhaps even some type of limited access with a password etc?

1 Like