Whitelist for accessing the API

Specify that only certain IP addresses can access the API through your account

With a Server IP Whitelist you restrict API access to specific source IPs - all others are rejected. This is optional but significantly hardens server-to-server integrations.

Set up the whitelist

Open Developer -> Settings and expand the REST API section. Under Server IP Whitelist add one IPv4 address, CIDR block or * per line. Click Save to apply.

Developer settings with Server IP Whitelist and two example entries

If you leave the field empty, API access is allowed from any address.

Error on unauthorized access

A request from an IP that is not on the whitelist is rejected by the API with error 903.

Last updated: March 25, 2026

Did this answer your question?

Related articles

IP address for whitelist

Developer

Where do I find my API key?

Learn how to view your API keys and create new ones.

Developer

IP Whitelist for Login

Restrict Access to Specific IP Addresses

Account