Limit API Token to a specific IP Address
Not Planned
As a server administrator, I would like to limit each WHM API Token to a specific IP address. This would be a very useful security feature.
I like this idea 
cPanel, WebHost Manager and WHM are registered trademarks of cPanel, L.L.C. for providing its computer software that facilitates the management and configuration of Internet web servers.
Howdy folks!
I'm excited to share with you that we've added this feature to WHM's Manage API Tokens interface for v98!
You will be able to Add, Edit, and Remove IP addresses or IP ranges to any existing and new WHM API tokens. When editing or generating a new API token, you will find a new field "Whitelisted IPs," in which you can input up to 100 entries of IP addresses and IP ranges (in CIDR format). You can separate each entry with commas, new lines, or any whitespace character, so if you happen to have a big list, copy and paste will be your friend! On the List API Tokens interface, there is a new column in this table that will display the first 5 entries you've inputted into the "Whitelisted IPs" field, so you will be able to see your entries at a glance if you have many API tokens.
Limitations:
1.) The IP ranges feature is only available for WHM API tokens.
2.) Only IPv4 is supported.
3.) 100 entries is the limit for this feature.
Please let me know if you have questions or feedback about this. Happy hosting to you!
Howdy folks!
I'm excited to share with you that we've added this feature to WHM's Manage API Tokens interface for v98!
You will be able to Add, Edit, and Remove IP addresses or IP ranges to any existing and new WHM API tokens. When editing or generating a new API token, you will find a new field "Whitelisted IPs," in which you can input up to 100 entries of IP addresses and IP ranges (in CIDR format). You can separate each entry with commas, new lines, or any whitespace character, so if you happen to have a big list, copy and paste will be your friend! On the List API Tokens interface, there is a new column in this table that will display the first 5 entries you've inputted into the "Whitelisted IPs" field, so you will be able to see your entries at a glance if you have many API tokens.
Limitations:
1.) The IP ranges feature is only available for WHM API tokens.
2.) Only IPv4 is supported.
3.) 100 entries is the limit for this feature.
Please let me know if you have questions or feedback about this. Happy hosting to you!
I agree this would be a good feature, but it would be great if this feature was opt-in / optional. We sometimes use the API from multiple IP's (including IPv4 & IPv6), so being forced to setup an IP whitelist while generating API tokens wouldn't be our preference. I understand it would be very useful or important for others though.
I agree this would be a good feature, but it would be great if this feature was opt-in / optional. We sometimes use the API from multiple IP's (including IPv4 & IPv6), so being forced to setup an IP whitelist while generating API tokens wouldn't be our preference. I understand it would be very useful or important for others though.
It's somewhat incredible this wasn't part of the original feature draft. One of the very reasons for being able to use multiple tokens is for increased security through a token for purpose, and restricting that to a specific IP address or subnet goes completely hand-in-hand.
Please consider adding this simple but essential feature.
It's somewhat incredible this wasn't part of the original feature draft. One of the very reasons for being able to use multiple tokens is for increased security through a token for purpose, and restricting that to a specific IP address or subnet goes completely hand-in-hand.
Please consider adding this simple but essential feature.
I dont understand why has not been implemented again... I think every admin want to give access just to their IPs to the API... so for each key created should be possible insert ips to whitelist....
I dont understand why has not been implemented again... I think every admin want to give access just to their IPs to the API... so for each key created should be possible insert ips to whitelist....
Howdy folks!
I'm excited to share with you that we've added this feature to WHM's Manage API Tokens interface for v98!
You will be able to Add, Edit, and Remove IP addresses or IP ranges to any existing and new WHM API tokens. When editing or generating a new API token, you will find a new field "Whitelisted IPs," in which you can input up to 100 entries of IP addresses and IP ranges (in CIDR format). You can separate each entry with commas, new lines, or any whitespace character, so if you happen to have a big list, copy and paste will be your friend! On the List API Tokens interface, there is a new column in this table that will display the first 5 entries you've inputted into the "Whitelisted IPs" field, so you will be able to see your entries at a glance if you have many API tokens.
Limitations:
1.) The IP ranges feature is only available for WHM API tokens.
2.) Only IPv4 is supported.
3.) 100 entries is the limit for this feature.
Please let me know if you have questions or feedback about this. Happy hosting to you!
Howdy folks!
I'm excited to share with you that we've added this feature to WHM's Manage API Tokens interface for v98!
You will be able to Add, Edit, and Remove IP addresses or IP ranges to any existing and new WHM API tokens. When editing or generating a new API token, you will find a new field "Whitelisted IPs," in which you can input up to 100 entries of IP addresses and IP ranges (in CIDR format). You can separate each entry with commas, new lines, or any whitespace character, so if you happen to have a big list, copy and paste will be your friend! On the List API Tokens interface, there is a new column in this table that will display the first 5 entries you've inputted into the "Whitelisted IPs" field, so you will be able to see your entries at a glance if you have many API tokens.
Limitations:
1.) The IP ranges feature is only available for WHM API tokens.
2.) Only IPv4 is supported.
3.) 100 entries is the limit for this feature.
Please let me know if you have questions or feedback about this. Happy hosting to you!
Replies have been locked on this page!