Luis Posted August 10, 2022 Share Posted August 10, 2022 Some (if not most) providers have some sort of security for their API keys which includes whitelisting IP addresses, so no bad actors can access those accounts. I'm assuming that all data in upmind is encrypted and protected, but it would sill be good if had the ability to lock those APIs by IP. Considering upmind is a SaaS platform, would it be possible to get a functionality like this? thanks. 1 Quote Link to comment Share on other sites More sharing options...
Seb Posted August 10, 2022 Share Posted August 10, 2022 It's there - - under settings -> security 🙂 Quote Link to comment Share on other sites More sharing options...
Seb Posted August 10, 2022 Share Posted August 10, 2022 Quote Link to comment Share on other sites More sharing options...
Luis Posted August 10, 2022 Author Share Posted August 10, 2022 (edited) 7 minutes ago, Seb said:  Yes, but it's not that exactly. For example, the following is a screenshot from namesilo, when you create an api key, you can lock that key usage by IP. There are also some other providers (like resellerclub) that makes this mandatory   Are the IP addresses we add as an A record to the domain, the IP's from where the provisioning requests are coming from? Edited August 10, 2022 by Luis 1 Quote Link to comment Share on other sites More sharing options...
Luis Posted August 11, 2022 Author Share Posted August 11, 2022 Just to add a little more info about this. I see you released a resellerclub integration already (amazing rate of releases!) Â Now, it asks for an API key, which I already have. But my API console requires me to whitelist the IP addreses from where API calls will be made, and doesn't allow me to save without one. Â Â Are there some fixed IP addreses we can use for these cases? Â Thanks! Â 1 Quote Link to comment Share on other sites More sharing options...
Viswanath VB Posted August 11, 2022 Share Posted August 11, 2022 Â https://docs.upmind.com/docs/upmind-ip-addresses 54.246.211.116 52.48.214.19 34.250.219.217 Quote Link to comment Share on other sites More sharing options...
Seb Posted August 11, 2022 Share Posted August 11, 2022 Ah ok - so something to clarify *Everything* that happens in Upmind is an API call. We're API first, so the entire admin area and client area is just you interfacing with our API If you lock down the IP restriction you therefore lock down both the admin area, and any API calls We will be changing the API setup and making API tokens, and those we will allow to be individually locked down to IPs also. 1 Quote Link to comment Share on other sites More sharing options...
Luis Posted August 11, 2022 Author Share Posted August 11, 2022 5 hours ago, Seb said: Ah ok - so something to clarify *Everything* that happens in Upmind is an API call. We're API first, so the entire admin area and client area is just you interfacing with our API If you lock down the IP restriction you therefore lock down both the admin area, and any API calls We will be changing the API setup and making API tokens, and those we will allow to be individually locked down to IPs also. Thank you, I understand more now. Sorry for the trouble. Quote Link to comment Share on other sites More sharing options...
Luis Posted August 11, 2022 Author Share Posted August 11, 2022 6 hours ago, Viswanath VB said:  https://docs.upmind.com/docs/upmind-ip-addresses 54.246.211.116 52.48.214.19 34.250.219.217 Thank you, I think I need to take a look into de docs deeper 😅 1 Quote Link to comment Share on other sites More sharing options...
Recommended Posts