Need to restrict dashboard access, but allow API endpoint use

davidg · December 2, 2021, 11:06pm

When ever I restrict all IPs but mine (.htaccess in root html):

<RequireAll>
   Require ip 12.123.123.12  # My dedicated IP VPN
<RequireAll>

The dashboard access works as expected - only from my dedicated IP, but this also restricts any GET/POST access to the mautic endpoint /api/contacts. How can I circumvent this?

From my understanding, the mautic API endpoint has a listener on its own like express, why is apache involved in this process?

TD;DR - I need my mautic dashboard to be restricted to 1 IP address, whilst having the api of mautic to be public and unrestricted.

Topic		Replies	Views
Restrict access to dashboard only for my IP Product Support	0	419	March 12, 2021
Cannot get API to work Development	2	1369	June 15, 2018
Error cors Product Support	1	57	April 7, 2024
Restrict backend access to only certain IP Product Support mautic-4	5	300	September 17, 2023
Mautic API Access Denied.. help pls! Product Support	1	684	April 29, 2017

Need to restrict dashboard access, but allow API endpoint use

Related Topics