The Allowlist is one of the Product Settings pages, accessible via the left sidebar.
The Allowlist is composed of all the scripts’ actions that the detection mechanism treats as acceptable or permitted.
This includes all the actions that correspond to incidents that were manually “Added to the allow list” or marked as such automatically.
Large websites that contain a lot of scripts may result in very large allowlists of 10-15K actions or more.
There’s a different allowlist for each Application + Host Domain (for example, when 3 host domains refer to a single Application entity, there will be 3 allow lists).
The list is presented in a table, specifying the following metadata on each allowed action:
You can sort the allowlist can by clicking the small arrows that appear beside the column headers when hovering over the headers row.
Any column that supports sorting will show such arrows and when clicked, the sort direction will be reflected by highlighting the corresponding arrow direction.
You can filter the allowlist by clicking the icon that appears above the table to the left.
A menu is shown, comprised of the fields that support filtering: selection can be made for multiple values of the same filter category, or across different categories, and are taken into effect when clicking “Apply”.
The chosen filters are shown in a dedicated panel above the table, and can be edited directly if needed, or removed altogether. The number of filtered items appears to the right, out of the total number of allowed actions.
An action can be removed from the allowlist, by hovering over the relevant row and clicking the trash can icon that appears to the far right.
Once removed, if the action is once again performed by the script, it will be identified and will result in a new unclassified incident.
When the icon is clicked, a dialog window is shown with the action’s metadata:
The allowlist can be exported in CSV format by clicking the export icon:
