Whilst I want to restrict access to mycompany.com/api to a single company, I am unable to whitelist any CIDRs due to the wide range of IPs used.
They do support other methods which I will list but can I filter this so other non-company connections are blocked?
- HTTP Authentication in conjunction with encryption
- Password protected URL
- Cryptographically signed incoming requests
Does CloudFlare support validating these methods and blocking those that fail?
**Edited Title and Category.