FrontendServlet frontend-servlet google.registry.module.frontend.FrontendServlet 1 frontend-servlet /_dr/epp frontend-servlet /registrar-xhr frontend-servlet /registrar frontend-servlet /registrar-payment-setup frontend-servlet /registrar-payment frontend-servlet /registrar-settings frontend-servlet /whois/* frontend-servlet /_dr/whois frontend-servlet /rdap/* frontend-servlet /check Internal Admin-only internal section. Requests for paths covered by the URL patterns below will be checked for a logged-in user account that's allowed to access the AppEngine admin console (NOTE: this includes Editor/Viewer permissions in addition to Owner and the new IAM App Engine Admin role. See https://cloud.google.com/appengine/docs/java/access-control specifically the "Access handlers that have a login:admin restriction" line.) TODO(b/28219927): lift some of these restrictions so that we can allow OAuth authentication for endpoints that need to be accessed by open-source automated processes. /_ah/* /assets/sources/* /assets/js/registrar_bin.js.map /assets/js/registrar_dbg.js /assets/js/brain_bin.js.map /assets/css/registrar_dbg.css admin CONFIDENTIAL Registrar console Registrar console requires user login. This is in addition to the code-level "requireLogin" configuration on individual @Actions. /registrar* * CONFIDENTIAL Secure Require encryption for all paths. http URLs will be redirected to https. /* CONFIDENTIAL ObjectifyFilter com.googlecode.objectify.ObjectifyFilter ObjectifyFilter /* OfyFilter google.registry.model.ofy.OfyFilter OfyFilter /*