In the initial settings, the workflow platform (Server) does not restrict the connection source (Client) of functions that require user authentication (Web UI or Questetra REST API). It can be accessed and used from anywhere in the world. You can also whitelist connecting source IPs to restrict access. On the other hand, access to modeling elements such as [Message Start Event (HTTP) ] is restricted from being available from external networks by default. It will be available by removing the restriction or whitelisting the source IP to allow access.
1. Overview of Source IP Filtering on the Workflow Platform
- a. IP Filtering (Global Configuration)
Restricts the source IP address for access to the entire workflow platform, including user logins and REST API requests
- b. API IP Filtering (Message Start Event/Receive Task Configuration)
Restricts the source IP address for specific applications or nodes, limiting access to HTTP and Webhook requests that do not require user authentication
For detailed settings, please refer to System Settings – IP Address Filtering
System Settings – IP Address Filtering
Z. More Info: Restrict access destination hosts
- a. Filtering connection destinations of HTTP communication
Enable [HTTP Destination Filtering] and register hosts to permit
HTTP communication from workflow apps is restricted to the allowed hosts only
System Settings – HTTP Destination Filtering
Comments
0 comments
Please sign in to leave a comment.