FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    Securing Webhooks

    Scheduled Pinned Locked Moved
    General Discussion
    2
    3
    1.5k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mark.shapiro
      last edited by

      In reading https://fusionauth.io/docs/v1/tech/events-webhooks/securing it mentions locking down your webhook via various firewall settings to only allow requests coming from a FusionAuth IP address.

      Where can I find that CIDR range(s) to implement? How often do those values change?

      danD 1 Reply Last reply Reply Quote 1
      • danD
        dan @mark.shapiro
        last edited by

        Hiya @mark-shapiro !

        If you are self-hosting FusionAuth, you will control the CIDR ranges.

        FusionAuth cloud hosted instances currently don't have a fixed CIDR range. There's an open issue you can follow for future developments: https://github.com/FusionAuth/fusionauth-issues/issues/1393

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        M 1 Reply Last reply Reply Quote 0
        • M
          mark.shapiro @dan
          last edited by

          @dan Yah this is for Cloud hosted (unfortunately?) sounds like we'll just need to stick with the existing auth/security options for now then.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post