====Whitelist====

The **whitelist** [[pathsecurity|access control]] rule allows access to a resource if the IP address of the client matches those in a list.

This is often used to allow services, scripts or specific workstations to access specific endpoints.

===Properties===

**list**: A list of string values, each containing an IP address. \\
**deny**: If true, this acts as a **blacklist** rather than a whitelist, denying access to the specified IP addresses.

===IP Ranges===

You can allow //ranges// of IP addresses.

Ranges are only supported for the **last** of the four bytes in an IPV4 address. For example, if your local network was on //10.10.2.x//, you could write a range of **10.10.2.1-255** to give any machine on that specific subnet access to ARDI.

===Basic Example===

<code javascript>
{
   "type": "whitelist",
   "list": ["127.0.0.1"]
}
</code>

//This restricts access to only the **local system**.//

===Local Network Example===

<code javascript>
{
   "type": "whitelist",
   "list": ["127.0.0.1","192.168.0.1-255"]
}
</code>

//This restricts access to only the **local system** and **computers on the 192.168.0.x network**.//