IP Address validation is an optional feature that can be used for all auth methods. This feature will record the IP address of the client during the start of an auth request. Then, at the time of validation, the IP address can be passed again. This will be compared with the value that was sent at the start of the request. This helps ensure the request that is being validated matches the start of the request.
- To use the optional security measure, simply provide the IP address of the client during validation (Read SDK docs to learn where to pass this).
- When using the backend API to start an auth request, you must provide the IP address value to use this optional security feature.
- Then, during validation, pass the IP address of the client.
- The IP address will be compared with what was sent at the start of the auth request.
Updated about 1 month ago