Limiting access for an app by IP range
回答済み
Thanks to some great answers previously, I have the open-source "Rclone" running using an API interface to update some files when needed. In my developer account, I've set it up as a "Limited-access" app, and I collaborated its service account to give it access to only the folders that it should manage. We'd like to limit use of this particular limited-access app definition to only allow requests from certain IP addresses, but I've been unable to find any way to do that. Is this possible?
-
正式なコメント
Hey Randy,
This is not possible at this time. We do have IP allow-listing, but it would require you to narrow both webapp AND api access to certain IP addresses, which sounds like way too much restriction for your use case. If you'd like to see us add this feature to our roadmap please ensure you add your feedback to pulse.box.com, which our product team directly monitors. I also just wrote this blog post on all the security mechanisms that limit access, which I think you might be interested in reading. You may want to consider downscoping your tokens as well!
Best,
Kourtney, Box Developer Advocate
コメントアクション
サインインしてコメントを残してください。
コメント
1件のコメント