We're working on setting up a public piwebapi instance to share specific data externally, both with some web based applications and external entities.
Besides exposing just the data we want to make public, we've noticed a few things we wouldn't want to have available to anyone hitting that PIWebAPI instance. There is some sensitive information displayed in the /piwebapi/system endpoints including the windows domain and the username running the PIWebAPI service. And we also wouldn't want anyone to access anything in the /piwebapi/admin/search/ area.
Is it possible to hide that information or do we need to write a wrapper around the PIWebAPI to prevent exposing this information?