Is it possible to add IP Bound OAuth clients

Dileepkaranki · June 9, 2024, 5:13pm

Is it possible to add IP Bound OAuth clients. I mean token generation with OAuth client credentials grant type will be able to generate token when the IP range is registered, so that we can avoid token generation from public network. This provides private access and security.

The most common way to implement this type is to add the requester’s IP address in the token payload and sign the token. The signature makes sure that the IP address was not tampered or changed. The IP address is then verified at the time of token validation by comparing the IP address requesting with the token and the IP address inside the token.This helps in ensuring the tokens are not used by other users or other Ip addresses.

Jerome.Saint-Marc · June 10, 2024, 9:11am

Hello,

No, it is not possible.
Available OAuth flows are listed in this page and described in the corresponding links.

If you want to control access to the platform, this can be achieved via configuration allowing IP addresses. But this will apply to all clients (Genesys Cloud desktops, Platform API clients, ....). So this must be enabled cautiously.

Regards,

Dileepkaranki · June 10, 2024, 9:31am

Does it comes under feature request or in the roadmap of Ideas Portal

Jerome.Saint-Marc · June 10, 2024, 9:31am

I don't know what you are referring to.

Dileepkaranki · June 10, 2024, 9:38am

I mean restricting the OAuth client based on specific Ip address.
Will it be considered adding this feature in future.
Is this idea present in Idea portal roadmap

Jerome.Saint-Marc · June 10, 2024, 9:39am

Not that I know of but you can search the ideas and the see if it exists.

Regards,

system · July 11, 2024, 9:39am

This topic was automatically closed 31 days after the last reply. New replies are no longer allowed.