How to restrict a route access for IP addresses

ThreeMammals / Ocelot

.NET API Gateway

https://www.nuget.org/packages/Ocelot

MIT License

8.38k stars 1.64k forks source link

Closed ShaonDey closed 1 year ago

ShaonDey commented 1 year ago

TargetFramework: net6.0 Ocelot Version: 17.0.0

Is there any feature to restrict a route so that only specific IP addresses will be able to access it?

ggnaegi commented 1 year ago

Hello @ShaonDey!

You could implement a delegating handler (docs) and throw an exception if the IP address doesn't match.
You can inject the HttpContext in the constructor - IHttpContextAccessor - and then get the source address by using httpContext.Connection.RemoteIpAddress?.ToString(), it's not bullet proof though.