Skip to main content

Secure a project

Security settings for your project are available in the dashboard.

Click SETTINGS and then select the SECURITY tab.

IPFS allowlists

Allowlisting prevents unwanted third-party access to your IPFS application.

Restrict requests by IP address, HTTP User-Agents header, and HTTP Origin header.

Allowlist behavior

  • If a project has no allowlists, all requests are accepted.
  • As soon as a project has an allowlist definition, all requests must pass it.
  • Each project has a maximum of 30 allowlist entries per type.
  • Each allowlist type is "AND"ed together.
  • Multiple entries of the same type are "OR"ed. :::

IP addresses

In the LIMIT IP ACCESS input box, enter a single IP address (e.g. 1.1.1.1) or a range of IP addresses (e.g 1.1.1.1-2.2.2.2) and click ADD.

Requests from IP addresses that are not in an entered allowlist will be rejected.

info

Example 1:

  • Allowlist entry: 1.1.1.1
  • Request's IP address: 1.1.1.2
  • Result: Request is rejected, since it does not originate from the allowed IP address.

Example 2:

  • Allowlist entry: 1.1.1.1-2.2.2.2
  • Request's IP address: 1.1.1.2
  • Result: Request is allowed, since it originates from an IP address in the allowed range.

User agents

In the ALLOWED AGENT USER AGENTS input box, enter a user agent and click ADD.

User agent allowlists for IPFS projects function the same as in Ethereum. See the Ethereum allowlist user agent documentation for more information.

Origins

In the ALLOWED HTTP ORIGINS input box, enter an origin and click ADD.

Origins allowlists for IPFS projects function the same as in Ethereum. See the Ethereum allowlist origins documentation for more information.

Last updated on