Replace IP Whitelist

POST/web/v1/system/security/ip-whitelist JWT

Replaces the entire IP whitelist for the authenticated user's security configuration. This is an atomic replace operation — all previous entries are removed and replaced with the provided list.

Required Headers

Header	Example Value	Description
Content-Type	application/json	Request content type
Accept	application/json	Expected response type
X-Client-Hash		Client device fingerprint
Accept-Language	`en`, `zh`, `zh-Hant`, `ja`, `vi`	Response language (default: `en`)
Authorization	Bearer	JWT access token

Request Parameters

Name	Type	Required	In	Description
`request`	`IpWhitelistUpdateRequest`	Required	body	Raw request body (encrypted via SecureChannel, auto-decrypted by the server)
`entries`	`String[]`	Required	body	List of whitelisted IP addresses or CIDR ranges (must not be null)

Request Example

json

{
  "entries": ["192.168.1.0/24", "10.0.0.1"]
}

Success Response

Success 200

{
  "version": "1.3.0",
  "timestamp": 1709337600000,
  "success": true,
  "code": "2000",
  "message": "SUCCESS",
  "data": {
    "enabled": true,
    "entries": [
      "192.168.1.0/24",
      "10.0.0.1"
    ]
  }
}

Returns the updated IpWhitelistResponse — see Get IP Whitelist for field descriptions.

Error Responses

Unauthorized 401

{
  "success": false,
  "code": "4010",
  "message": "Invalid or expired token"
}

Notes

Replaces the entire whitelist atomically. To clear all entries, pass an empty array: {"entries": []}.
Entries support exact IP addresses and CIDR notation.
Uses secure channel for encrypted communication.
The enabled status is not changed by this endpoint — use Enable / Disable endpoints.

Replace IP Whitelist ​

Required Headers ​

Request Parameters ​

Request Example ​

Success Response ​

Error Responses ​

Notes ​