Need to restrict dashboard access, but allow API endpoint use

davidg · December 2, 2021, 11:06pm

When ever I restrict all IPs but mine (.htaccess in root html):

<RequireAll>
   Require ip 12.123.123.12  # My dedicated IP VPN
<RequireAll>

The dashboard access works as expected - only from my dedicated IP, but this also restricts any GET/POST access to the mautic endpoint /api/contacts. How can I circumvent this?

From my understanding, the mautic API endpoint has a listener on its own like express, why is apache involved in this process?

TD;DR - I need my mautic dashboard to be restricted to 1 IP address, whilst having the api of mautic to be public and unrestricted.

Topic		Replies	Views
Restrict access to dashboard only for my IP Product Support	0	495	March 12, 2021
Can I restrict API access? Product Support	4	139	May 27, 2024
Restrict IP Address Product Support	1	442	September 8, 2016
Cannot access Mautic login Product Support	10	1137	August 22, 2021
Error cors Product Support	1	111	April 7, 2024

Need to restrict dashboard access, but allow API endpoint use

Related topics