Powered by Redocly

Limit Authentication Token

Invoke the set-bound-cidrs operation

It is possible to limit the use of a token to a specific cidrs. This will make it more difficult for a stolen unit to be compromised.

SecurityaccessToken
Request
query Parameters
site
string

Send the request to the specfifed site

Request Body schema:
One of:
token
string
bound-cidrs
Array of strings <ip-address-and-prefix-length>
  • ipv4-address-and-prefix-length: The ipv4-address-and-prefix-length type represents a combination of an IPv4 address and a prefix length. The prefix length is given by the number following the slash character and must be less than or equal to 32. For example 192.168.131.0/24.
  • ipv6-address-and-prefix-length: The ipv6-address-and-prefix-length type represents a combination of an IPv6 address and a prefix length. The prefix length is given by the number following the slash character and must be less than or equal to 128. For example fe80::42:b6ff:feff:2f3/64. The ip-address-and-prefix-length type represents a combination of an IP address and a prefix length and is IP version neutral. The format of the textual representations implies the IP version.

This field can be used to limit the IP addresses that are allowed to use the token.

Responses
200

OK

400

Bad Request

401

Unauthorized

403

Forbidden

404

Not Found

503

Service Unavailable (strongbox sealed)

post/v1/state/strongbox/token/set-bound-cidrs
Request samples 
token: b7c1abeb-7f45-4f5c-9aba-97ceb117f777
bound-cidrs:
  - 192.168.1.0/24
Response samples 
token: fe665fd1-ad8c-4ec6-a594-b4cc15123b36
expires-in: 0
accessor: b7c1abeb-7f45-4f5c-9aba-97ceb117f777
creation-time: 2022-01-13T08:59:52.110681Z
bound-cidrs:
  - 192.168.1.0/24
➔ Next to Login