Hi all -
Is it possible to set up an access security file to allow only CA/PVA requests from the same host as the IOC? One option of course is to use asSetSubstitutions and some variable, but it seems
like there should be a more intrinsic way of doing this.
I have attempted using the name “localhost”, asCheckClientIP set to 1, even using 127.0.0.1 as a member of the host access group, but none of these seemed to work.
My two main questions:
- Is there a better or more canonical way of doing this?
- Perhaps more importantly--particularly if we have to use environment variables and substitutions--is there some danger or pitfall about
this that we should be careful about?
Cheers,
Simon
______________________
Simon Rose
Software Engineer
Control System Software and Services
European Spallation Source ERIC
P.O. Box 176, SE-221 00 Lund, Sweden
Visiting address: Partikelgatan 2, 224 84 Lund
Mobile: +46 72 179 23 07
E-mail: simon.rose at ess.eu
![signature_1311191015](pngWn6vUUT6Zv.png)