}

    /**
     * Check if path is whitelisted
     */
    private boolean isWhitelisted(String path) {
        if (whitelistedPaths.isEmpty()) {
            return true; // No whitelist means all paths allowed
        }

        String lowerPath = path.toLowerCase();
        for (String whitelisted : whitelistedPaths) {
            if (lowerPath.startsWith(whitelisted) || lowerPath.equals(whitelisted)) {

    /**
     * Check if the IP is in the whitelist.
     * @param ip the IP address to check
     * @return true if whitelisted
     */
    public boolean isWhitelisted(final String ip) {
        final Set<String> whitelist = ComponentUtil.getFessConfig().getRateLimitWhitelistIpsAsSet();
        final boolean whitelisted = whitelist.contains(ip);
        if (logger.isDebugEnabled() && whitelisted) {

        // Should allow whitelisted path
        String allowed = validator.validatePath("\\share\\allowed\\file.txt");
        assertEquals("\\share\\allowed\\file.txt", allowed);

        // Should block non-whitelisted path
        try {
            validator.validatePath("\\share\\other\\file.txt");
            fail("Should block non-whitelisted path");
        } catch (SmbException e) {

          branches:
            - "${ghprbActualCommit}"
    triggers:
      - github-pull-request:
          org-list:
            - elastic
          allow-whitelist-orgs-as-admins: true
          trigger-phrase: '.*run\W+elasticsearch-ci/docs-check.*'
          github-hooks: true
          status-context: elasticsearch-ci/docs-check
          cancel-builds-on-update: true

          branches:
            - "${ghprbActualCommit}"
    triggers:
      - github-pull-request:
          org-list:
            - elastic
          allow-whitelist-orgs-as-admins: true
          trigger-phrase: '.*run\W+elasticsearch-ci/{pr-job}.*'
          github-hooks: true
          status-context: elasticsearch-ci/{pr-job}
          cancel-builds-on-update: true

          branches:
            - "${ghprbActualCommit}"
    triggers:
      - github-pull-request:
          org-list:
            - elastic
          allow-whitelist-orgs-as-admins: true
          trigger-phrase: '.*run\W+elasticsearch-ci/rest-compatibility.*'
          github-hooks: true
          status-context: elasticsearch-ci/rest-compatibility
          cancel-builds-on-update: true

          branches:
            - "${ghprbActualCommit}"
    triggers:
      - github-pull-request:
          org-list:
            - elastic
          allow-whitelist-orgs-as-admins: true
          trigger-phrase: '.*run\W+elasticsearch-ci/part-2-fips.*'
          github-hooks: true
          status-context: elasticsearch-ci/part-2-fips
          cancel-builds-on-update: true

          branches:
            - "${ghprbActualCommit}"
    triggers:
      - github-pull-request:
          org-list:
            - elastic
          allow-whitelist-orgs-as-admins: true
          trigger-phrase: '.*run\W+elasticsearch-ci/full-bwc.*'
          github-hooks: true
          status-context: elasticsearch-ci/full-bwc
          cancel-builds-on-update: true

          branches:
            - "${ghprbActualCommit}"
    triggers:
      - github-pull-request:
          org-list:
            - elastic
          allow-whitelist-orgs-as-admins: true
          trigger-phrase: '.*run\W+elasticsearch-ci/part-2-windows.*'
          github-hooks: true
          status-context: elasticsearch-ci/part-2-windows
          cancel-builds-on-update: true

          branches:
            - "${ghprbActualCommit}"
    triggers:
      - github-pull-request:
          org-list:
            - elastic
          allow-whitelist-orgs-as-admins: true
          trigger-phrase: '.*run\W+elasticsearch-ci/packaging-upgrade-tests.*'
          github-hooks: true
          status-context: elasticsearch-ci/packaging-upgrade-tests