Blocking Domains, Email IDs, and IPs
The Blocking feature on the cidaas platform allows admin users to define additional IPs or domains/email IDs they want to prevent from registering or logging into their systems.
This is especially useful during registration because you can custom-define one or more specific domains/emails/IPs to be allowed or blocked from registering into your system.
Additionally, cidaas also has a built-in filter that checks during registration and identifies potentially fake or blacklisted email providers, unauthorized domains, and online disposable email services like Mailinator. These are then blocked and cannot be used while registering on cidaas.
Blocking ensures secure access to your business services while preventing access using disposable email services or unauthorized domains through blocking.
The setting in the AdminUI corresponding to this feature is called Allow Disposable Email. This option is by default, "Disabled" which means blocking is "Enabled".
Our recommendation is to follow the best practices and not "Enable" Allow Disposable Email, so you are dealing with authentic email IDs all the time.
However, there may be times when you are testing instances, and a non-existent email has to be used.
In other circumstances, you may be using email IDs automatically generated by scripts during automated testing.
In such cases, turning on the Allow Disposable Email option (enabling) under Apps->App Settings -> Advanced Settings-> Flow Settings is useful to "Disable" the checking.
Please see: Preventing Blocking during Registration.
Please see: Creating your own Blocking List.
Preventing Blocking during Registration
If you are unable to Register your Email ID on cidaas (for testing purposes or otherwise), one of the reasons may be that your Email ID is being blocked by the system since it may belong to an unauthorized domain. It could also be an email ID from an online disposable email service like Mailinator.
In this case, you will need to configure the blocking set-up to allow disposable mails.
By default, the flag "Allow Disposable Email" is disabled, so fake emails cannot be used during registration. In order to allow registrations using any/all e-mail domains, this flag must be activated.
This can be done by turning on the "Allow Disposable Email" switch. For this, you need to login as the admin. Then navigate to cidaas Dashboard -> Apps -> App Settings -> selected clientId -> Advanced Settings -> Flow Settings.
Here are the steps to follow:
1. Click on "App Settings" under Dashboard -> Apps
2. In the Apps List section, click on the search textbox with the placeholder text "Search App by Client Name or Client Type."
Then, click on the Edit button.
3. Scroll down the page and click on the "Advance Settings" button.
4. In the Advance Settings window, scroll down and click on the "Flow Settings" tab.
5. This will expand the "Flow Settings" window to display the options given below.
You will notice that the "Allow Disposable Email" switch is turned off by default.
6. Turn on this switch by clicking on it. This will enable the option to allow disposable email during registration (switch turns from grey to orange).
A step-by-step guide window named "Allow Disposable Email" appears at the top right-hand corner of this window.
Click on "OK" to continue. Then, click on the "Save" button to save your settings.
After you have activated this setting you will be able to register.
Creating your own Blocking List
Alternatively, you could create your own blocked list for Domains/Emails or IPs with the following steps.
1. Click on the Blocking option in the Dashboard menu.
2. Here, you will see that the Enabled switch is turned on by default.
3. Under Blocking Ip Settings, you can exclusively provide the Ips for the following:
- Block Listed Ips- Mention the IPs that need to be blocked.
- Excluded Ips- Mention the IPs to be excluded from the Blocked list.
- White Listed Ips- Mention the IPs that need to be whitelisted or allowed by your system.
- Block Listed Domains- Mention the Domain names that need to be blocked.
- Excluded Emails- Mention the Email IDs to be excluded from the Blocked list. This is where you will need to mention your test email ID or Allowable Email ID to prevent Blocking during Registration.
- White-listed Domains- Mention the Domain Names that need to be white-listed or allowed by your system.
4. Under Blocking Domain Settings, you can exclusively provide the domains/emails for the following:
5. After typing in the valid IPs and Domains/Emails as required under Blocking Ip Settings and Blocking Domain Settings, click on the Save button to save your changes.
After this, the Blocking settings you've made will be enabled for the IPs, Domains, and Email IDs mentioned by you. By doing this, you can exclude the one provider that your automated tests might be using from being Blocked.
If you face any issues while configuring this Blocking set-up, please visit our support page for further assistance.