Design and Implementation

Sequence Diagram

The Connector fetches the blocked_ip_range and blocked_ip_list from the pre-input configurations and the remote IP address from the incoming request.
It first validates the remote IP address against blocked IP ranges, based on the pre-input configurations.
If the remote IP address is specified in the blocked_ip_range, the connector displays a 403 error. The connector then validates the remote IP address against the blocked IP/subnet list.
If the remote IP address is present in the blocked_ip_list, then the connector displays a 403, not authorized (ERR_403_NOT_AUTHORIZED) error, otherwise the API request is proxied to the backend server.