Host a webapi in IIS Express so it can only be accessed by a parent web application
I have 2 separate webapi apps and I want the 1st one to be a normal webapi app which can be accessed by any authorised over the internet. With the 2nd one, I need it to not be publicly accessible and only available to the 1st (so the 2nd app is 'nested' within the first somehow). Could anyone please tell me how I can achieve this (the apps are hosted in IIS Express at present but will be in iis for production)? Many thanks
If you're concerned about security (and everyone should be), you can configure IIS to allow only specific computers, groups of computers or domains access to your Web site. Here's the procedure:
1)Open the IIS console and go to the Properties of your Web site.
2)double-click IP Address and Domain Restrictions.
3)Click Add Allow Entry... (on the right pane) to add an IP address or IP address range which will be allowed to access the website. Click OK. Repeat this step to add other IP addresses to the list.
Once allowed IP addresses have been added, click Edit Feature Settings... and select Deny for Access for unspecified clients. Click OK.
Now, only users with the specified IP addresses are able to access the website.
- PHP response triggers HEX view in Edge debugger
- Why does my ASP.NET Core 5 Razor Page return a 404 on IIS, but not in Visual Studio?
- Fix Razor web pages with a friendly URL returning a 404 error
- ASP.NET Core 404 Error on IIS 10
- My asp.net core app doesn't find favicon.ico when it's deployed to IIS
- ASP.NET: HTTP Error 500.19 – Internal Server Error 0x8007000d
- HTTP Error 500.19 - Internal Server Error (0x8007000d)
- IIS 6.1 - Always running web site with Hangfire for background jobs
- login/logout issue for multiple IIS applications under the same site
- Deploying NodeJS application in IIS server
- What are the technical differences between Cassini and IIS for a development environment?
- Deploy Angular 17 with SSR on IIS Server
- PowerShell script to monitor IIS logs for 500 errors every 10 minutes
- How to prevent download of files to unauthenticated users
- How to debug this issue with MapRequestHandler, ASP.NET and the cookieless config
- Regular Expression "^$" For URL Rewrite in IIS
- Running Quarkus Native Image API with IIS as a Reverse Proxy alongside ASP.NET Core
- How to run vuejs files on IIS
- System.Net.Mail.SmtpFailedRecipientException: Mailbox unavailable.
- With IIS 10 on Windows Server 2022, MIME type is NOT being inherited
- Changing IIS 6/7 Application Pool settings programmatically
- IIS not able to locate the web.config
- arr url rewrite not working for external sites
- "401 Unauthorized" on a directory
- Visual Studio 2012: Unable to attach the process. A debugger is already attached
- Why is the ConfigurationManager.GetSection "system.webServer/handlers" not available?
- Python/Flask Login form throws 500 error on IIS
- Unable to launch IIS Express Web Server - Failed to Register URL - Cannot create a file when that file already exists | VS Community 2017
- How to run both Microsoft IIS and WAMP on the same PC via localhost
- How to fix 500.30 - ASP.NET CORE app failed to start