Domain and IP restrictions

Frontegg allows you to enforce access control by restricting access based on domains or IP addresses. You can configure these restrictions using an allowlist or denylist to control which users can access your app.

Available restriction levels

Domain and IP restrictions can be applied at different levels:

Environment-level domain restrictions that apply to all accounts within a specific environment. You can configure these settings in the Frontegg portal.
Account-level domain and IP restrictions for specific accounts within an environment. You can configure these settings in the Frontegg portal.
User-level domain and IP restrictions for individual user accounts. You can configure these settings through the self-service portal.

Domain Restrictions

An allowlist or denylist can be used to control domain access.

Allowlist grants access only to specified domains; all others are denied.
Denylist blocks access only to specified domains; all others are allowed.

IP Restrictions

Similar to domains, IP restrictions can be configured using an allowlist or denylist.

Allowlist grants access only to specified IP addresses; all others are denied. Ensure that the allowlist includes the current user's IP address to prevent lockout.
Denylist blocks access only to specified IP addresses; all others are allowed. The denylist cannot include the current user's IP address, as this would result in a lockout.

Domain and IP restrictions

Available restriction levels

Domain Restrictions

IP Restrictions

How useful was this page?