Domain Whitelisting

Domain whitelisting is a security measure that restricts where a flipbook or document can be embedded by specifying a list of approved website domains. When someone places an [embed code](/glossary/embed-code) on a webpage, the viewer checks the hosting domain against the whitelist before loading. If the domain is not on the approved list, the content is blocked and the viewer does not render. This gives publishers precise control over where their content appears on the web, preventing unauthorized redistribution without affecting the embed code itself.

Embed codes are easy to copy. Once your flipbook is embedded on one site, anyone can inspect the page source, grab the iframe code, and paste it on their own website. Without domain restrictions, your content could appear on competitor sites, low-quality aggregator pages, or platforms that misrepresent your brand. Domain whitelisting closes this gap by enforcing distribution boundaries at the viewer level. It protects intellectual property, preserves brand integrity, and ensures that licensed or confidential content remains within its intended context.

FlipLink's [Privacy & Access Control](/features/privacy-and-access-control) settings include domain whitelisting. When configuring a publication, you enter the domains where the flipbook is allowed to be embedded — for example, your company website and a partner's site. Each time the embed loads, FlipLink checks the referring domain. If it matches an entry on the whitelist, the content renders normally. If not, the viewer displays a blocked message. You can add or remove domains at any time without regenerating or redistributing the embed code already placed on approved sites. This works alongside other access controls like [password protection](/features/password-protection) and [OTP verification](/glossary/otp).