Limiting access for an app by IP range

New post


1 comment

  • Official comment

    Hey Randy, 

    This is not possible at this time. We do have IP allow-listing, but it would require you to narrow both webapp AND api access to certain IP addresses, which sounds like way too much restriction for your use case. If you'd like to see us add this feature to our roadmap please ensure you add your feedback to, which our product team directly monitors. I also just wrote this blog post on all the security mechanisms that limit access, which I think you might be interested in reading. You may want to consider downscoping your tokens as well! 


    Kourtney, Box Developer Advocate

    Comment actions Permalink

Please sign in to leave a comment.