Connection between gravity forms and Zapier

Hello,
I am trying to connect zapier with gravity forms but I can’t due to cerber.

The request /wp-json/gf/v2 is blocked
So I added that in the cerber’s settings.

image614×172 5.93 KB

The gravity form support told me to try that:
"Ask if they have a filter or some other method to allow you to use a wild card string for whitelisting, ie /wp-json/gf/v2/* instead of specific name spaces. Gravity Forms does dynamic name spaces based on the Form ID, off the bat we need:
"

If you have any ideas to fix it please.

Hi! Add to the list only two letters: gf

More on the matter: https://wpcerber.com/restrict-access-to-wordpress-rest-api/

Hi Garry,

This is Jim from Gravity Forms Support; our endpoints (multiple of them) are located under /wp-json/gf/v2/*

Just adding gf doesn’t appear to be working (it’s still blocking the endpoint with a 401 rest_forbidden).

We need to be able unblock anything within that path. gf would not be sufficient.

Do you have a filter to allow wildcard ‘whitelisting’?

Hi Jim,

Normally, WP Cerber doesn’t send 401 headers, so I suspect something else might be causing this. Could you try adding Zapier’s IP address to the white access list and see if that resolves the issue? Let me know how it goes.

Hi Garry, Zapier is on a Cloud Service so we can’t do IP specific blocks. This needs to be a Request URL Whitelist. I would prefer being able to address this with the full directory or /wp-json/gf/v2/* to cover the entire directory range.

I’m asking because I believe WP Cerber is not blocking those requests. Check the Traffic Inspector log on the website. When WP Cerber blocks a request, it generates a 403 Forbidden response, as shown below. If you see other responses like 401, it means WP Cerber is not involved. If you see no requests in the log, the logging is disabled.

image1915×845 27.6 KB

I tried only to add gf and it worked perfectly.
Thank you !!!