Domain Restriction Docs

Include the Script

<script src="https://cdn--skunkplatform.netlify.app/free/scripts/domain-restriction.js"></script>

Global Object

window.sp_domain_restriction

Authorize a Domain


await sp_domain_restriction.addAuthorizedDomain(
  "example.com",
  "MY_PASSWORD",
  ["token", "id"]
);

Block a Domain


await sp_domain_restriction.addBannedDomain(
  "evil-site.com",
  "MY_PASSWORD"
);

Validate Current Domain


const allowed = await sp_domain_restriction.matchDomain(
  location.hostname,
  [...new URLSearchParams(location.search).keys()]
);

if (!allowed) {
  document.body.innerHTML = "403 - Forbidden";
  throw new Error("Unauthorized domain");
}

Security Notes

Client-side only
Not real security
Use backend validation for sensitive data