Is there any option available to whitelist Realm GraphQL endpoint to a machine or server for security purposes. Please let me know
Hey Mo - can you expand on what you mean by whitelist? If you’re looking for static IPs for Realm which you can add to your client, we have them published here. (note: these may change very rarely)
If you’re looking to only allow incoming requests to Realm from certain IPs, you can actually set that in your permissioning by:
- Setting up a role that performs a function
- Check the remote IP address inside the function that gets called
- Return true if the IP you want to allow matches the request IP
Hope that helps - we’re also planning on introducing a specific IP access list feature to MongoDB Realm to improve this experience.
Sumedha
1 Like
I have a REST endpoint (for eg. IP for this server is XX.XX.XX.XX) that will interact with REALM endpoint. For this, I want to establish a secure connection between both. I don’t want other systems to access the REALM endpoint, It should only process the request from IP XX.XX.XX.XX.
I believe you have already given the option to handle this situation, Thanks. I am very excited to wait for the IP access list feature in REALM.
Do you have any idea, when this feature will be available?
Hi Mo, it will likely be a few more months until you are able to use the feature.
Hi @Sumedha_Mehta1
context.request is always empty in the function.
It works nice when I run the functions from portal (https://realm.mongodb.com/). When I call realm graph from postman, context.request is always empty.
Please help, As per your feedback I have set up the role and unable to get the remote IP in function and it is the blocker for me.
That issue should be resolved as of last week.
1 Like
This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.