Allow API call from a specific mobile app

Question

By using Node and Express, can I allow only HTTP REST calling from a specific mobile app?

For security reason, I want to achieve these:

 1. Allow only specific IP range. Since both of the app is hosted using Azure website.
 2. Allow only connection from specific mobile app.

score 1 · Accepted Answer · answered Apr 12 '16 at 04:12

1

Use CORS or JSONP

In CORS

For example, to allow http://mozilla.com to access the resource, you can specify:

Access-Control-Allow-Origin: http://mozilla.com

answered Apr 12 '16 at 04:12

Kenichi Shibata

score 0 · Answer 2 · edited May 23 '17 at 12:23

0

You can check HTTP Headers to get the client ips, see here Check the ip with your IP list and only return if it is success.

edited May 23 '17 at 12:23

Community

answered Apr 12 '16 at 05:27

Amit

2 Answers2