IP does not match IP whitelist

I’m currently running into this error when trying to whitelist the IP’s allowed to access an API key. I’m using a proxy to route the request through the IP addresses that I’ve defined on the whitelist, yet I’m getting this error. Is there any way to check the IP address that Coinbase believes they’re receiving the request from, to help understand what’s causing the error?

I’ve used https://api.ipify.org?format=json and have confirmed that the proxy is routing the request through the correct IP addresses.

Hello @Tradable! We understand the inconvenience you are having. To further assist you with the issue, we’ll need you to provide us the following information:

• What API endpoint/s are you attempting to use?
• If possible, can you copy the text of the error message and your sample code? You can also opt to send a screenshot if it’s more convenient for you.

Furthermore, please make sure that VPNs and any other software you may have is not interfering with your IP Whitelisting.

Once you send us the information requested above, we’ll work to quickly address this issue. We appreciate your patience and understanding.

Hi @Anonymouse, thanks for getting back to me. Here is the info as requested:

• /withdrawals/fee-estimate
• Error message and sample code:
  statusCode: 401,
  error: { message: ‘IP does not match IP whitelist’ },
  options: {
  json: true,
  method: ‘GET’,
  url: ‘https://api.exchange.coinbase.com/withdrawals/fee-estimate?currency=DAI&network=ethereum&crypto_address=0x9a315bdf513367c0377fb36545857d12e85813ef’,
  proxy: superProxy,
  headers: {
  ‘CB-ACCESS-KEY’: apiKey,
  ‘CB-ACCESS-SIGN’: signature,
  ‘CB-ACCESS-TIMESTAMP’: ‘1661831905’,
  ‘CB-ACCESS-PASSPHRASE’: passphrase,
  ‘User-Agent’: ‘Google Cloud Functions’
  },
  }

If I use an api key that is not whitelisted, it works fine, so I’m confident that there are no errors in the signature. This request is being made from a cloud backend, so no VPN or software interfering, the proxy is where the request to Coinbase will ultimately be made from. As I mentioned, I made a request to https://api.ipify.org/?format=json and it is returning the correct IP address (one that is on the whitelist).

I have tried other private endpoints such as /accounts, and I get the same error message. Public endpoints of course are working, as I don’t need to authenticate the request.

Hi @Anonymouse, any updates?

Hi @Anonymouse, it’s been quite some time since your response. Please send an update

Hi @Tradable ! We apologize for the late response as we investigate your concern. We recommend you try creating the same request with an API key that has a whitelist and then with an API key without a whitelist. Please also provide the exact timestamp of when you send the messages with payload response.

Kindly let us know the result of your request. Thank you!

Hi @jewel-ssi,

As stated “If I use an api key that is not whitelisted, it works fine, so I’m confident that there are no errors in the signature.”.

Please see the request made at 1678692114680 (2023-03-13 15:21:54.680 AWST), “StatusCodeError: 401 - {“message”:“IP does not match IP whitelist”}”.

Thanks for your help.

Hi @Tradable! Thank you for providing more information about the error that you have encountered. Rest assured that we already communicated this with our internal teams to look further with your concern. We will inform you once we have an update. We appreciate your patience and understanding. Have a great day!

Hi @Katkat,

Thank you for your response. We have found the error, which was on our end. The proxy didn’t have coinbase.com whitelisted on it’s domains list.

Thanks everyone above for your help

Hi @Tradable! It’s good to hear that your concern was already resolved. If you need anything else in the future, please feel free to reach out. Have a great day!