Re: DirectActions only (local and private network)
Re: DirectActions only (local and private network)
- Subject: Re: DirectActions only (local and private network)
- From: Johann Werner <email@hidden>
- Date: Thu, 1 Jun 2017 11:40:55 +0200
You can check for request().remoteHostAddress() in your direct action and return a 403 code if it does not match 127.0.0.1 or a given set of IP adresses.
> Am 01.06.2017 um 11:03 schrieb ece <email@hidden>:
>
> We have a publicly reachable app with some direct actions that are needed for maintenance tasks. These direct actions are triggered by cron jobs using curl. We want to make sure that such direct actions cannot be used from outside of our local network. At the moment anybody who knows the URL could trigger such an action from anywhere in the world.
>
>> On 1 Jun 2017, at 10:12, Paul Hoadley <email@hidden> wrote:
>>
>> On 1 Jun 2017, at 5:28 pm, ece <email@hidden> wrote:
>>
>>> I want some DirectActions (not all) run from the local machine or at least the private network only.
>>> Someone knows a way to realize this?
>>
>> Can you give us some more information? How are you currently set up? And tell us more about what you want to achieve.
>>
>>
>> --
>> Paul Hoadley
>> http://logicsquad.net/
>> https://www.linkedin.com/company/logic-squad/
>>
>>
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden