Docs
mobileIoT Hardware
Documentation

Device Access

This section controls the device’s local file upload and JSON API access features:

  • Enable Local File Uploads : Allows or disallows pushing data files to the device via HTTP(S) POST requests.
  • Password Protection for Uploads : Optionally requires a password for accessing the local file upload endpoint to enhance security.
  • Allow HTTP Uploads (Insecure) : Permits file uploads over unencrypted HTTP connections; use with caution as this is vulnerable to interception.
  • E nable JSON API Access via HTTP (Insecure): Enables or disables access to the device’s JSON API over HTTP for data retrieval (e.g., by ifm ecomatDisplay).
  • JSON API IPv4 Whitelist : Restricts HTTP JSON API access to specified IP addresses, recommended to limit to trusted LAN subnets for security.

These settings balance convenience of local data management with security considerations, providing flexible control over upload methods and API accessibility.


Enable local file uploads to the device

  • Options: ON/OFF
  • Default: ON
  • Description: Allow or disallow pushing data to the device with HTTP or HTTPS POST.

Enable password protection for local file uploads to the device

  • Options: ON/OFF
  • Default: OFF
  • Description: Password protect the local upload link where data can be POSTed for further transfer to the DataPortal.

Members on the LAN can upload files to the CR3171 via HTTP(S) POST. The CR3171 will then transfer these files further to the DataPlatform if configured to do so and as soon as an internet connection is available. This option configures if the local uploaders need to provide a password when accessing the local POST URL or not.

Allow to upload files to the device via HTTP (insecure)

  • Options: ON/OFF
  • Default: ON
  • Description: Allow to POST data to the device via HTTP instead of HTTPS.
Note:
This is insecure! Even when enabling the local upload password this will not provide any protection against sniffing attacks. Use at your own risk.

Allow access to JSON API via HTTP (insecure)

  • Options: ON/OFF
  • Default: ON
  • Description: Enable or disable the HTTP JSON API to retrieve device data for usage in e.g. an ifm ecomatDisplay.

JSON API IPv4 whitelist (valid only for HTTP requests)

  • Default: <empty>
  • Description: Restricts access to the JSON API to only a specified list of addresses. Valid only for HTTP GET request.
Recommended:
Bound to LAN network only, e.g. using 192.168.82.1/24 and therefore only allow the 192.168.82.* domain. Making it even more restrictive with e.g. a /29 mask setting is even better.