The ALLOW_FROM element specifies rules for access to GAS applications or
services from specific hosts.
This can be specified by a host's IP address, or access can either be globally denied or
allowed by the following keywords:
Syntax
[<ALLOW_FROM>["NOBODY|ALL|ip_address"]</ALLOW_FROM>][...]
The ip_address is a valid IPv4 or IPv6 address. For IPv4 it
can be a complete IP address or a network address (ending with a dot)..
Example usage
<ALLOW_FROM>$(res.access.control)</ALLOW_FROM>
The resource
res.access.control is defined with the value
NOBODY by default.
The default GAS deployment for demo applications and
MONITOR
references this resource. For more information on configuring access control, see
Example configuring access control for demo applications
Note: Access control rules will be ignored by the standalone dispatcher (httpdispatch).
Important: The standalone GAS is for development
only, provided to simplify your development setup and configuration. For deployment and production
systems, you must include a Web server.
How access control rules are applied
If more than one access control rule (i.e.
ALLOW_FROM element) is specified, the
following describes the order rules are applied:
- NOBODY always gets the highest priority regardless of other rules, which means
that nobody gets access.
- ALL gets priority over specific IP addresses when the keyword
NOBODY is not provided, which means that access is allowed to all.
- If neither the keyword NOBODY nor ALL is provided, the
remaining access control rules are applied.
Parent elements
This element is a child of one of the following elements: