Comments (6)
Thank you for this. In this case is removing the IP restriction view in users from staart-ui a reasonable plan? If a user should always be able to login to thier own account it might remove some confusion.
from api.
Issue-Label Bot is automatically applying the label bug
to this issue, with a confidence of 0.91. Please mark this comment with 👍 or 👎 to give our bot feedback!
Links: app homepage, dashboard and code for this bot.
from api.
Hi @mattp95, thanks for opening this issue!
I haven't tested IP whitelisting in the live version right now, but the logic is available here in jwt.ts
and it's used in the middleware here. It seems like this is only in the API key right now, not users, so I'll make sure I add it there too.
I think it's best to add the IP check when on the organization settings/dashboard, but not the user. Since a user can be part of multiple organizations, they should still be able to edit their profile, change their password, etc., from any IP address, and only be restricted to an IP/CIDR range when they're in their organization.
I'll also have a closer look at the invalidation token. How it works right now is using Redis. The logic for that is available here in jwt.ts
. Maybe it could be something to do with your Redis configuration that it's not saving it? Maybe it just doesn't work. I'll have a look. 😄
from api.
from api.
from api.
from api.
Related Issues (20)
- 2 Questions :: HOT 7
- what version of UI will work with api v3? HOT 1
- Stripe payment module finished? HOT 1
- API demo is down HOT 1
- How do we add scopes/roles to a user or is it done automatically? HOT 1
- Version 1.0.0 has errors upon running `npm run build` out of the box HOT 2
- how to setup v3 HOT 4
- Docker does not expose ports needed for frontend to connect with backend HOT 1
- Outdated endpoints? HOT 1
- Verification email returns error 404 HOT 1
- demo ? HOT 2
- Authorization Model: Where did Casbin go? HOT 4
- Error - geolocation.service.spec.ts HOT 3
- docker-compose example HOT 1
- Is V4 stable? HOT 1
- Swagger - Add bearer token to make it usable HOT 3
- Fix swagger /v bug in curl posts HOT 2
- Production ready? HOT 1
- Outdated documentation HOT 1
- OAuth Feature HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from api.