Network and Method Restrictions
Restrict profiles by source network and HTTP methods to enforce least privilege.
IP restrictions
Add exact IPs or CIDR ranges to the profile allowlist.
Examples:
203.0.113.10198.51.100.0/24
If allowlist is empty, any source IP is allowed.
Method restrictions
Limit profile access to selected methods:
- Read-only:
GET - Read/write:
GET,POST,PUT,PATCH
If no methods are selected, all methods are allowed.
Practical guidance
- Start with restrictive defaults.
- Use separate profiles for read-only and write access.
- Review restrictions during every integration change.