Support center for flex.bi version 4.0

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Current »

In the Settings page you can edit the database connection parameters and the flex.bi Enterprise license.

SSRF protection

Available from the flex.bi version 4.2.

SSRF (Server Side Request Forgery) protection allows to prevent flex.bi REST API and SQL import from other hosts in the same local network where the flex.bi server is running. By default SSRF protection is disabled.

Enable SSRF protection with:

[ssrf_filter]
enable = true

If you would like to allow REST API import or SQL import access to some IP addresses in the same local network, then specify allowed_ip_addresses setting. In addition, you can specify restricted_ip_addresses to specify additional IP addresses (which are not in the local network) from which REST API import and SQL import should be restricted.

[ssrf_filter]
enable = true
allowed_ip_addresses = ["192.168.1.1", "192.168.8.1"]
restricted_ip_addresses = ["8.8.8.8", "8.8.4.4"]


  • No labels