question/request for documentation on accesslist configuration #2

qorron · 2016-10-19T08:08:13Z

suffering from issue #1 I was thinking to allow connections to everywhere if login via g+ works and restrict it to one single target ip if it doesn't.
the source ip doesn't matter in both cases.

how would I do that?

zyclonite · 2016-10-19T09:35:21Z

good question!
this was not possible yet without messy blacklist rules...
i added a whitelist now where you can configure this single host (v1.0.2)

"accesslist":[{
  "email":"[email protected]",
  "access":[
    {"network":"0.0.0.0/8"},
    {"network":"::/8"}
  ]
},
"whitelist":[
  {"host":"192.168.0.1"}
],
"blacklist":[
  {"network":"0.0.0.0/8"},
  {"network":"::/8"}
]

qorron · 2016-10-19T12:31:39Z

nice! thanks!

so instead of the id one can also use the email for authentication with g+?

what about the domain property?
is it possible to specify more than one id or email for one accesslist entry?

zyclonite · 2016-10-19T12:49:24Z

id, email and domain are possible -> domain is only available if you have a google apps account with your private domain (hosted domain)

there is no list of ids possible at the moment, you need to copy the whole entry for another id

zyclonite closed this as completed Aug 4, 2017

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

question/request for documentation on accesslist configuration #2

question/request for documentation on accesslist configuration #2

qorron commented Oct 19, 2016 •

edited

Loading

zyclonite commented Oct 19, 2016

qorron commented Oct 19, 2016

zyclonite commented Oct 19, 2016

question/request for documentation on accesslist configuration #2

question/request for documentation on accesslist configuration #2

Comments

qorron commented Oct 19, 2016 • edited Loading

zyclonite commented Oct 19, 2016

qorron commented Oct 19, 2016

zyclonite commented Oct 19, 2016

qorron commented Oct 19, 2016 •

edited

Loading