Offboarder Admin Portal
WAF-Only Enforcement
When enabled, all admin API endpoints reject requests that did not originate from the Azure Front Door WAF. Direct API calls (bypassing Front Door) return 403. Enable only after confirming all access routes through the Front Door endpoint below.
Admin UI Protection
Protect the Admin Portal web pages behind Azure Front Door WAF. Requires the Static Web App to run on the Standard SKU. Toggle enables or disables the SKU upgrade; configure the Front Door origin and Private Link endpoint separately via infrastructure.
WAF Policy Status
Policy Mode
Detection logs matching requests without blocking. Prevention actively blocks requests that match WAF rules. Prevention is the recommended production mode.
Custom IP Rules
IP-based match rules evaluated before managed rules. Use Block to deny specific ranges, Allow to explicitly permit ranges regardless of managed rule matches.
| Name | Action | IP Ranges | Priority | State | |
|---|---|---|---|---|---|
| Loading... | |||||