Get-startedDomain Restriction

Domain Restriction

Understanding Domain Restriction in doable.sh

In doable.sh, setting domain restrictions is a crucial step when creating an operator. Domain restrictions help ensure that your operator is only accessible from authorized web applications. This added security measure protects your operator from unauthorized use or embedding.

Why Domain Restriction Matters

  1. Enhanced Security: By specifying allowed domains, you ensure that only trusted websites can interact with your AI operator. This prevents malicious actors from embedding your operator into unauthorized or harmful websites.

  2. Access Control: Limiting domains helps you maintain control over where your AI operator is deployed. It ensures that the operator is used in environments you have configured and approved.

  3. Data Privacy: When your operator processes sensitive data or user interactions, controlling the domains ensures that data is only accessed from your verified applications.

  4. Usage Management: Restricting domains helps prevent unexpected usage spikes caused by embedding your operator on public or high-traffic websites without your knowledge.

Setting Up Domain Restriction

When creating a new operator in doable.sh, you will see an option to specify Allowed Domains. You can add up to three domains to your operator. These are the domains where your operator can be embedded and function correctly.

How to Add Allowed Domains

  1. Go to your operator's configuration page.
  2. Under Allowed Domains, select Add Domain.
  3. Enter the domain name (e.g., yourdomain.com).
  4. Repeat for up to three domains as needed.

What Happens if You Don’t Set Domains?

If you do not specify any domains, your operator will not be embedded or will not function on any website. This strict policy helps you maintain full control over your operator’s accessibility.

Best Practices for Setting Domains

  • Use Main Domains: Instead of subdomains, use the main domain to ensure broader access (e.g., yourcompany.com instead of app.yourcompany.com).
  • Be Specific: Only include domains you directly manage or own.
  • Regular Updates: Regularly review and update allowed domains as your application environment changes.

By taking these precautions, you maintain a secure, private, and well-regulated AI operator that aligns with your organizational policies.

For more information on configuring operators, check the doable.sh documentation.

Previous

Create an Operator

Next

Invitations and RBAC

On this page

Understanding Domain Restriction in doable.shWhy Domain Restriction MattersSetting Up Domain RestrictionHow to Add Allowed DomainsWhat Happens if You Don’t Set Domains?Best Practices for Setting Domains