Disabling public access to Syncthing's REST API

libarzi · November 11, 2023, 11:50am

I am serving the Syncthing web GUI to my local network via a reverse proxy web server (Nginx). Since no one on the local network needs to use Syncthing’s REST API, is it appropriate to configure my web server to block access to the /rest/... endpoints?

I am planning to add this Nginx configuration to block local network access to the REST API:

location /rest/ {
    deny all;  # Return 403 Forbidden.
}

Will there be any negative side effects from blocking /rest/...? Would it affect the functioning of the rest of Syncthing?

acolomb · November 11, 2023, 12:27pm

The Web GUI is the primary consumer of the REST API. If you want to use the GUI, REST must be accessible as well.

system · December 11, 2023, 12:28pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.