PHP download

Download the PHP package internetrix/silverstripe-controller-ip-restriction without Composer

On this page you can find all versions of the php package internetrix/silverstripe-controller-ip-restriction. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.

Table of contents
Download internetrix/silverstripe-controller-ip-restriction
More information about internetrix/silverstripe-controller-ip-restriction
Files in internetrix/silverstripe-controller-ip-restriction

Vendor internetrix
Package silverstripe-controller-ip-restriction
Short Description Restrict SilverStripe controllers to specific IP address
License BSD-3-Clause

Keywords silverstripe ip address ip restriction restrict ip controller restriction

FAQ

After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.

Example:

If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.

In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.

Some PHP packages are not free to download and because of that hosted in private repositories. In this case some credentials are needed to access such packages. Please use the auth.json textarea to insert credentials, if a package is coming from a private repository. You can look here for more information.

Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
To use Composer is sometimes complicated. Especially for beginners.
Composer needs much resources. Sometimes they are not available on a simple webspace.
If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.

Please rate this library. Is it a good library?

Informations about the package silverstripe-controller-ip-restriction

Introduction

This module allows SilverStripe developers to restrict access to arbitrary-defined controllers, according to a User's IP address. Requests to specific Controllers will be denied if a user's IP does not match the provided list of allowed IP addresses.

Allowed IP addresses can be set via an environment variable or via the SiteConfig. Common use cases of the module includes:

Restricting access to the CMS admin section
Restricting access to the dev/tasks admin.

Requirements

SilverStripe CMS ^4

Installation & Configuration

Install the module via composer:
Set the following variables for Internetrix\CMSAdminIPRestriction\AllowedIPMiddleware in config:
- enabled: Set this to true to enable this module's AllowedIPMiddleware
- restricted_controllers: A list of controllers you want to be restricted by IP addresses

In the following example, we are restricting access to the CMS admin as well as the /dev controller.

Define which IP addresses are allowed in .env file, using a SS_ADMIN_ALLOWED_IPS variable. For multiple IP addresses, use a comma-limited list.

Additional allowed IP addresses can also be set by a CMS admin via the CMS SiteConfig, under the Allowed IPs tab. Simply create a new record with an exact IP address and label it with the corresponding physical location (used for audit purposes)

Bypass IP restriction

If a certain user is an Admin, they can bypass the IP restriction check if the CanBypassIPRestriction database field is set to true. This can be set when editing the member in the CMS and is only applied if the User remains a CMS Administrator.

Important: Due to race conditions, this features requires a user to be first logged-in so that the CanBypassIPRestriction value for the user can be checked. If the CMS admin or another Controller is restricted, a user must first log-in to SilverStripe via a non-restricted page (i.e A Only Logged-in Users Can View Page) before the IP Bypass will be applied.

Troubleshooting

If no IP address is specified in .env or via the SiteConfig, the restricted controllers will be inaccessible.

Todo

Currently, IP matching is based on exact matching IP address. Range, wildcard and CIDR is currently not supported and will included in the future. Pull requests welcome!

All versions of silverstripe-controller-ip-restriction with dependencies

PHP Build Version

Package Version

Version 1.0.1 Release 07. May 2021
create-project require 0 people chose require and
0 people chose create-project.

Download

Download latest version of silverstripe-controller-ip-restriction from vendor internetrix

Requires php Version >=7.1
silverstripe/framework Version ^4.0.0
silverstripe/cms Version ^4.0.0

Composer command for our command line client (download client) This client runs in each environment. You don't need a specific PHP version etc. The first 20 API calls are free. Standard composer command

The package internetrix/silverstripe-controller-ip-restriction contains the following files

Loading the files please wait ...