Skip to content

REST API Security Documentation

Jump to bottom
Canates Arikan edited this page Mar 16, 2020 · 12 revisions

This guide explains how to Control REST API Security on Ant Media Server. You can able to secure your REST Services with IP Filter feature.

IP Filter in REST API

If you want some IP addresses to be able to access REST APIs, you should add IP’s or IP Ranges in Dashboard > {Application} > Settings > IP Filtering Settings in panel.

REST API Filter

If 127.0.0.1 is deleted, requests in the server(localhost) is disabled. People in the same network but in different machines still cannot access the REST API when 127.0.0.1 is on the list.

If you want to remove REST Filter in AMS, you should delete below codes in SERVER_FOLDER/webapp/Application(LiveApp or etc.)/WEB-INF/web.xml

<filter>
<filter-name>AuthenticationFilter</filter-name>
<filter-class>io.antmedia.console.rest.AuthenticationFilter</filter-class>
</filter>

<filter-mapping>
<filter-name>AuthenticationFilter</filter-name>`
<url-pattern>/rest/*</url-pattern>
</filter-mapping>

If you delete AuthenticationFilter code block in Application, every one can access your REST API.

User Guide

Reference

Troubleshooting

Draft

Proposals

Clone this wiki locally