SitePoint Sponsor

User Tag List

Results 1 to 4 of 4
  1. #1
    SitePoint Enthusiast
    Join Date
    Nov 2007
    Location
    London, UK
    Posts
    91
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    How do I allow only client pc's to access web app

    I have been asked to figure out how we can allow only client pc's to access our web app such that even a legit user can not log on from home. It must be only from the office. Its just that the information is kinda sensitive and we want to avoid non screen personel from seeing them while they are being worked on.

    The users have been adviced but in order to catch up with work they have been found to work while at home.
    Prov. 13:20 - He that walketh with wise men shall be wise: but a
    companion of fools shall be destroyed

  2. #2
    secure webapps for all Aleksejs's Avatar
    Join Date
    Apr 2008
    Location
    Riga, Latvia
    Posts
    755
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Allow to connect only from work IP addresses. You can enforce that from various places:
    firewall
    WAF
    http server configuration

  3. #3
    SitePoint Enthusiast
    Join Date
    Jul 2010
    Posts
    31
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by thepreacher View Post
    I have been asked to figure out how we can allow only client pc's to access our web app such that even a legit user can not log on from home. It must be only from the office. Its just that the information is kinda sensitive and we want to avoid non screen personel from seeing them while they are being worked on.

    The users have been adviced but in order to catch up with work they have been found to work while at home.
    If your application is running on Apache, you can take use of .htaccess and deny the access for everyone but allowed for the client Ips:

    e.g

    deny from all
    allow from 11.22.33.44

  4. #4
    SitePoint Enthusiast
    Join Date
    Nov 2007
    Location
    London, UK
    Posts
    91
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Thanks guys. I just discussed this with the boss and basically he now wants client staff restricted to some functions only when longing on from non office pc. So with what you guys have said I am thinking I will have to store the IP of the client gateway and validate the tasks requested against it.
    Prov. 13:20 - He that walketh with wise men shall be wise: but a
    companion of fools shall be destroyed


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •