Block API reqs except whitelisted IP’s

  • Resolved tipat

    (@tipat)


    4 years, 3 months ago

    Guys,

    Is there a way to block API requests for all except a set of whitelisted IP’s?
    Cant seem to find such an option, so not sure if available or should be looking for another solution?

    Using Litespeed with their quic.cloud and need to whitelist their IP’s for domain key.

    Thanks

Viewing 7 replies - 1 through 7 (of 7 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, have you tried simply to whitelist the IP addresses you wish to allow access to your site?

    Regards

    Thread Starter tipat

    (@tipat)

    Thanks @mbrsolution

    Did not see such an option to whitelist an IP, but only to whitelist for logins.
    Is there such an option in your plugin (even when API is disabled) and if so, under what menu?

    Thanks heaps.

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi,

    Did not see such an option to whitelist an IP, but only to whitelist for logins.

    Just so I understand you correctly. What are you trying to achieve?

    Thank you

    Thread Starter tipat

    (@tipat)

    Hi,

    Do not allow WP Rest API access to the public (non-logged in users),
    but allow it to whitelisted IP’s without login. Possible?

    Plugin Contributor mbrsolution

    (@mbrsolution)

    We do have an option to block WordPress REST API access for unauthorized requests. Go to Miscellaneous -> WP Rest API and enable
    Disallow Unauthorized REST Requests:.

    However the above might not work as you expect it. Give it a try and report back with the outcome.

    Thank you.

    Thread Starter tipat

    (@tipat)

    Thanks.
    This I know, its what I tried, but how you do allow besides login/auth by simply white-listing the IP so they can access without login?

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Unfortunately that is not currently available in our plugin.

    Thank you

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Block API reqs except whitelisted IP’s’ is closed to new replies.