Block Parameters
The Block Parameters feature allows you to block specific URL parameters from being passed in requests to your site. For example, you might want to block requests from compromised API keys, fraudlent affiliate codes, or other parameters that are known to be malicious.
How to Block Parameters
- Navigate to the Block Parameters section in your dashboard.
You’ll see a form with the following fields:
- Pattern: Enter the substring pattern of the parameter you want to block. For example: “api_key” or “my_bad_affiliate_code”
- Note (optional): Add a date or reason for blocking this parameter. This can help you keep track of why certain parameters were blocked.
- After entering the parameter, optional value, and optional note, click the “Save Rule” button to apply the block.
Best Practices
- Keep a record of why you’ve blocked specific parameters using the Note field.
- Regularly review your blocked parameters to ensure they’re still necessary.
- Leverage the Block IPs feature to block entire IP addresses based on their past behavior.
- Use the Block Countries feature to block all requests from specific countries.