Facebook
TwitterUsername:
TITLE
access limitation to API - Plesk Mobile Extension doesn't handle it correctly
PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE
Plesk 18.0.40, CentOS 7.9
PROBLEM DESCRIPTION
Plesk Mobile Extension doesn't behave as expected when API access is restricted in panel.ini with
[api]
allowedIPs =
STEPS TO REPRODUCE
Use plesk mobile extension. Set up access to your server. Limit access to the server for the Mobile Extension using the panel.ini entry
[api]
allowedIPs =
ACTUAL RESULT
[api]
allowedIPs = not.my.ip.address
> no access. Correct.
---
[api]
; allowedIPs = [not specified at all]
> full access. Correct.
---
[api]
allowedIPs = is.my.ip.address
> Weird things happening.
- client domain tab: shows listing of client domains
- information tab: shows "authorization error: the specified username or password is incorrect"
- events tab: no event shown; even if there are
- services tab: no services are shown
- settings tab: almost all options are shows. Except for: Log into Plesk
back to the client domain tab: pick any. click "Manage in Plesk". Shows error "permission denied", but have full access to everything as admin.
EXPECTED RESULT
[api]
allowedIPs = is.my.ip.address
> full access as if no restriction is specified at all.
ANY ADDITIONAL INFORMATION
(DID NOT ANSWER QUESTION)
YOUR EXPECTATIONS FROM PLESK SERVICE TEAM
Confirm bug
TITLE
access limitation to API - Plesk Mobile Extension doesn't handle it correctly
PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE
Plesk 18.0.40, CentOS 7.9
PROBLEM DESCRIPTION
Plesk Mobile Extension doesn't behave as expected when API access is restricted in panel.ini with
[api]
allowedIPs =
STEPS TO REPRODUCE
Use plesk mobile extension. Set up access to your server. Limit access to the server for the Mobile Extension using the panel.ini entry
[api]
allowedIPs =
ACTUAL RESULT
[api]
allowedIPs = not.my.ip.address
> no access. Correct.
---
[api]
; allowedIPs = [not specified at all]
> full access. Correct.
---
[api]
allowedIPs = is.my.ip.address
> Weird things happening.
- client domain tab: shows listing of client domains
- information tab: shows "authorization error: the specified username or password is incorrect"
- events tab: no event shown; even if there are
- services tab: no services are shown
- settings tab: almost all options are shows. Except for: Log into Plesk
back to the client domain tab: pick any. click "Manage in Plesk". Shows error "permission denied", but have full access to everything as admin.
EXPECTED RESULT
[api]
allowedIPs = is.my.ip.address
> full access as if no restriction is specified at all.
ANY ADDITIONAL INFORMATION
(DID NOT ANSWER QUESTION)
YOUR EXPECTATIONS FROM PLESK SERVICE TEAM
Confirm bug
