Security and Spam Prevention

To avoid malicious use of your organization's Rep.ai widget, and to prevent your team from wasting time on spam callers, there are a few options that you can configure on the settings Security page.

Domain Allow List

Add a list of all the domains you plan to use the Rep.ai widget on. Any attempts to load the widget on other web pages will be blocked, and you'll never see those clients in the dashboard. Domains are subdomain specific, so connections from app.mycompany.com will be rejected if your allow list only contains mycompany.com. The allow list currently does not support wildcarding.

Development domains

While you can manually specify your development domains along side your public domains, we also include a toggle to allow connections from most common development domains without having to exhaust your available domains. These include:

  • All localhost ports

  • Any IP address (e.g. http://127.0.0.1)

  • Any .local domain

Last updated