⚙️ Winget-Repo Cloud Settings Overview
This document describes the configuration options available in the Winget-Repo Cloud Settings panel.
🔧 Server Settings Table
| Setting | Description |
|---|---|
| Winget-Client Versions | A comma-separated list of compatible Winget client versions. |
| Client Authentication | Enables client-side authentication for secure access. |
| Terms of Service | If enabled, the Winget client will require the user to accept the Terms of Service before interacting with the repo. |
| IP Restriction | Restricts access to specific IPv4/IPv6 addresses, ranges, or subnets. |
| Winget pre-indexed Source | If enabled, the WinGet REST source and client authentication will no longer function. Instead, you can add the winget repository in the same way as the official Microsoft WinGet repository. |
🛡️ IP Restriction
The IP restriction system validates incoming requests based on the client's IP address. You can define a whitelist using various formats.
Supported Formats
The system is flexible and supports the following notations:
- Default (No Restriction): * Value:
DEFAULT- Allows all IP addresses.
- Single IP Addresses: * Example:
192.168.1.1or2001:db8::1 - IP Ranges (Hyphenated): * Example:
192.168.1.1 - 192.168.1.100- Note: Start and end IP must be of the same version (IPv4 or IPv6).
- CIDR Notation (Subnets): * Example:
10.0.0.0/24or2001:db8::/32
Configuration Rules
- Separators: Use a comma (
,) or a semicolon (;) to separate multiple entries. - Case Sensitivity: The
DEFAULTkeyword is case-insensitive. - Validation: Any client IP not matching the defined rules will be denied access automatically.
💡 Technical Notes
- Client Authentication: We strongly recommend enabling this alongside IP restrictions for a multi-layered security approach.