Limit script access to a given IP?

Chris_96_WS6

Not sure where to start with this.

I have a cron script I have developed for an enterprise-level PHP app. Before scheduling the script to run, IT has requested I modify it so that the script is only accessible from a specific IP address (that of the server), plus my own desktop's IP.

I have no clue how to go about this. Can anyone point me in the right direction?

Would I use an .htaccess file (Allow from; Deny All) or is there a way to do it with PHP?

rsmith

If the IP is static you could store the IP in the db, then check the IP accessing the script against the one in the db that has access. If it matches, allow acces, if not, redirect to an error.

Chris_96_WS6

That seems excessive. The IP is static, so why not just store it in a variable or define it?

Here's what I came up with....seems to work:

include("../../include/config.php");


define('IP1', 'XXX.XXX.XXX.XXX');
define('IP2', 'XXX.XXX.XXX.XXX');
$Remote_IP = $_SERVER['REMOTE_ADDR'];

if($Remote_IP == IP1 || $Remote_IP == IP2) {

   // get cron tasks from db, then include them to execute
   $query = "Select cronPath FROM cron WHERE cronOn = '1' ";
   $result = mysql_query($query) or die;

   while ($row = mysql_fetch_object($result)) {

  include($row->cronPath);

  }

} else {

echo "you do not have permission to execute this script";
exit;

}

rsmith

I was just throwing out an idea. Never said it was the best. Glad you found something that seems to work. When it comes to static stuff, I just define an array in my config file and if the name or ip isn't in the array, it doesn't allow access.

hairulazami

I was trying to use define some variable in WAMP Server, it works. But why in XAMPP, it doesn't work, the define variable IP1 and IP2 cannot be declaration. Is define need to be set up in XAMPP server ?