Logo
Access Control
Access ControlAccess Control: Visitor IP

Access Control: Visitor IP

Included in the “Power Extensions” bundle

Grant access to the schema based on the visitor's IP address.

Description

In the Access Control editor, a new rule "Visitor IP" is made available:

Access Control: Visitor IP rule

We configure the rule with the list of IP addresses that can either access, or are denied access to, the schema elements.

Each entry can either be:

  • A regex (regular expression), if it's surrounded by / or #, or
  • The full IP address, otherwise

For instance, any of these entries match IP address "203.23.88.100":

  • 203.23.88.100
  • #^203\.23\.[0-9]{1,3}\.[0-9]{1,3}$#

And under Behavior, select if to "Allow access" or "Deny access" to the schema for those entries.

Adding entries in the Visitor IP block

When access is denied, the response will contain an error message like this one (in the public mode):

{
  "errors": [
    {
      "message": "The client IP address must satisfy constraint '#^255\\.[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}$#' to access field 'karma' for type 'Comment' (your IP address is '172.19.0.2')",
      "locations": [
        {
          "line": 15,
          "column": 5
        }
      ]
    }
  ]
}