developer.authorize.net developer.cybersource.com
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a question

Authorize.net webhooks and Cloudflare "attack mode"

Hello,

 

We are using Authorize.net on a magento 2 site.  We are being inundated by AI scrapers and need to restrict them.  The conventional methods have failed to keep them out.  Cloudlare has a mode “I’m Under Attack” which requires attachments to the site to verify that they are human.  Unfortunately this break the Authorize.net webhooks.

If I could know the IP addresses that the webhooks were coming from I could create a rule to specifically allow these IP addresses.  Can anyone help me get these IP addresses?

If anyone has a different/better solution I would love to hear it.  When I search for solutions ho to solve this they suggest using features of Cloudflare that have been deprecated or are not part of the free package that we use.

Any help is greatly appreciated.

Thanks  

Proflix
Member

‎09-08-2025 04:52 AM

0 Kudos
1 REPLY 1

JavaScript Challenges: When "I'm Under Attack Mode" is enabled, Cloudflare presents a JavaScript challenge to visitors to verify they are legitimate users and not bots. This challenge involves a brief "Checking your connection" screen and requires the client to execute JavaScript.

Rectee
Member

‎10-08-2025 04:21 AM

0 Kudos
Copyright © 2025 Khoros, LLC