This Discuss post covers the endpoints under the whitelist IP: Authentication for admin endpoints
You can set the whitelist IP option in Alpha (--whitelist) to set the IPs allowed for these operations. By default, it’s set to localhost (127.0.0.1), and you can set it to a CIDR range for private IPs or open it up to all IPs (0.0.0.0/0).