API Applications having IP whitelist



  • ShayBox

    Although this wouldn't completely stop it, it would reduce it a lot, the only way after that would be gaining remote server access to run malicious code on the whitelisted server.

    I support this idea, would be great.

  • ThatProgrammer

    I really like you idea, and to be completely honest, and as Shay said, this would not completely eliminate the concept of leaking your api tokens by mistake or being hacked and having it taken that way. It's still a step in the right direction to help prevent it just a little bit more.

  • Eton

    You're absolutely right, it wouldnt completely eliminate the problem. It would greatly lower the number of times its happening because then you'd have to first find out the whitelisted IP then breach that server

  • HPaulson

    This actually has a ton of support on an issue over in the API docs GitHub... just linking this here for reference:


  • Rei | Blizzard Team

    hi Forgi_Forgeth,


    Well for users who uses online services for bots, they shouldn't care, but actually I'm talking about users who hosts their discord bot on a server. also classless whitelisting could be cool, to allow only some ranges, as example if you home host and you have a dynamic IP, you could just specify a classless IP to whitelist.

    You can know what the IP is while you're the owner.

  • piesquared

    Yeah, this would be amazing.  A server i am on just got 3 bots hacked.

  • Wolfyxon

    Epic idea!

    One of my servers got destroyed by nuking using my own bot so I really want this feature

  • Tristan

    The GitHub issue #788 was closed. A discussion continues it.



Please sign in to leave a comment.