You can check for request().remoteHostAddress() in your direct action and return a 403 code if it does not match 127.0.0.1 or a given set of IP adresses.
> Am 01.06.2017 um 11:03 schrieb ece <e...@rucotec.ch>: > > We have a publicly reachable app with some direct actions that are needed for > maintenance tasks. These direct actions are triggered by cron jobs using > curl. We want to make sure that such direct actions cannot be used from > outside of our local network. At the moment anybody who knows the URL could > trigger such an action from anywhere in the world. > >> On 1 Jun 2017, at 10:12, Paul Hoadley <pa...@logicsquad.net> wrote: >> >> On 1 Jun 2017, at 5:28 pm, ece <e...@rucotec.ch> wrote: >> >>> I want some DirectActions (not all) run from the local machine or at least >>> the private network only. >>> Someone knows a way to realize this? >> >> Can you give us some more information? How are you currently set up? And >> tell us more about what you want to achieve. >> >> >> -- >> Paul Hoadley >> http://logicsquad.net/ >> https://www.linkedin.com/company/logic-squad/ >> >> _______________________________________________ Do not post admin requests to the list. They will be ignored. Webobjects-dev mailing list (Webobjects-dev@lists.apple.com) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/webobjects-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
