The following two API endpoints:
- Create Access List Entries for One Organization API Key
- Remove One Access List Entry for One Organization API Key
...each have an incorrect requirement stated in their description:
"Resources require all API requests originate from the IP addresses on the API access list."
This sentence in each one can just be removed. FYI, this has been tested for confirmation: we no longer rquire the caller's IP to be in the API Key's IP Access List. This is no longer required for any API endpoint unless:
a) There is already one or more entries in the API key's IP Access List (effectively enabling it); or
b) If it's required at an org-level for all endpoints