Webhook security in dialogflow
We are developing a google action with a fullfilment in a cloud function in GCP. We want to know how is the best way to securize this cloud function:
- It is possible use a private cloud function as fullfilment and avoid requests from others origins to dialogflow?
- It is possible include a rate limit and quota in our cloud function?
- It is possible to limit the number of concurrent request?
- Are there some recomendation about certificates or similar?
Thanks!
It is possible use a private cloud function as fullfilment and avoid requests from others origins to dialogflow?
The short answer is that your fulfillment must be publicly accessible. Your cloud function cannot be private.
If you want, Dialogflow's Fulfillment section lets you add custom auth or headers. You may be able to use this to only enable requests with this header go through.
It is possible include a rate limit and quota in our cloud function? It is possible to limit the number of concurrent request?
I'm going to suggest not to have any sort of rate limiting. If each request is authentic, you'd end up creating a bad user experience if your fulfillment keeps going down.
Are there some recomendation about certificates or similar?
Cloud Functions are all HTTPS by default, so I'm not sure what certificates you'd need or want in this case.
- Make wampserver online on internet without port forwarding
- Dialogflow CX Page Fulfillment Response Text Parameter Is List (ES users may know the answer as well)
- Dialogflow CX import entities as CSV
- Dialogflow API Chatbot for React Native in Expo
- How to validate parameter input in dialogflow
- Extract conversation history in DialogFlow request
- Adding new utterances to specific Intents in Dialogflow Agent
- Dialogflow error only on node/typescript server
- How to go to next line in Dialogflow responses
- (Could not construct ApplicationDefaultCredentials) for PHP dialogflow
- How to set a DialogFlow session's timezone?
- Followup intents can only be called twice?
- How to specify agent ID when calling Dialogflow API?
- Link Custom Payload Buttons to Intents
- Wont highlight entities
- Dialogflow doesn't return training phrases
- My dialogflow agent is suddenly not matching an intent for any query
- Can we export all Dialogflow entities at the same time instead of 1 by 1?
- Getting UNAVAILABLE: Credentials failed to obtain metadata
- api.api.ai: Temporary failure in name resolution
- Can't access DialogFlow API via node
- How to make a SIP call through nodejs
- How to add buttons in whatsapp bot using dialogflow
- Training Dialogflow Doubts
- Dialogflow ES test area don't recognize the configured intents and calls "Default Fallback Intent"
- DialogFlow v2 Error: Resource name '' does not match 'projects/*/locations/*/agent/environments/*/users/*/sessions/*'
- How can I add the suggestion button in my Chatbot?
- what are the changes in HTTP request format while migrating from Dialogflow v1 to Dialogflow v2
- Getting Error in Web Demo during Integration
- Dialogflow/API.ai Amazon Echo integration: Simple plain text bot for testing