Domain Lock - Advanced feature of Web Code Protector

Introduction

Domain Lock is a powerful security feature in the Web Code Protector tool that restricts access to protected web content based on the domain where it is hosted. This ensures that the code only executes on authorized websites, preventing unauthorized redistribution or misuse.

Why Use Domain Lock?

Your web content is valuable intellectual property. Without domain restrictions:

Anyone can copy and host your code on their site
Licensed content can be redistributed illegally
Sensitive business logic can be stolen
Premium features can be accessed without authorization

How Domain Lock Works

The Domain Lock feature works by verifying the domain where the protected content is being accessed. If the domain does not match the allowed domain(s) specified during protection, the content either redirects to a predefined URL or fails to load.

Key Components of Domain Lock

Allowed Domain - The domain where the content is permitted to run (e.g., example.com)
Redirect URL - Where users are sent if they access from an unauthorized domain
Normalization Logic - Automatically removes http://, https://, www., and trailing slashes

// Example Domain Lock Implementation
const currentDomain = window.location.hostname.toLowerCase();
const allowedDomain = "yourdomain.com"; // Normalized domain

if (currentDomain !== allowedDomain && 
    !currentDomain.endsWith('.' + allowedDomain)) {
    window.location.href = "https://yourdomain.com/invalid-access";
}
                

Practical Usage of Domain Lock

Preventing Unauthorized Hosting

If someone copies your protected HTML/JS code and tries to host it on their own website, the Domain Lock feature will block execution and redirect them.

Protecting Licensed Web Applications

SaaS providers can use Domain Lock to ensure their licensed scripts only work on their clients' approved domains.

Securing Premium Content

Digital products (e.g., eBooks, membership sites) can be locked to specific domains to prevent piracy.

Whitelisting Corporate Domains

Enterprises can restrict internal tools to company domains only, preventing leaks.

Implementation in Web Code Protector

Step-by-Step Configuration

Enable Domain Lock - Go to the Advanced tab and toggle the Domain Lock checkbox
Set Allowed Domain - Enter the domain (e.g., yourdomain.com)
Configure Redirect URL - Specify where unauthorized users should be redirected

Advantages of Domain Lock

✅ Prevents Unauthorized Redistribution - Stops others from copying and reusing your code
✅ Enhances Licensing Control - Ensures only paying customers can use your scripts
✅ Simple Yet Effective - Works with minimal configuration
✅ Works with Other Protections - Combines with Password Protection, Expiry Dates, and DRM

Limitations & Considerations

Important Notes

⚠ Not Foolproof Against Reverse Engineering - Determined attackers can bypass client-side checks
⚠ Requires Proper Domain Formatting - Must enter domains correctly (e.g., example.com not https://www.example.com)
⚠ Does Not Protect Against Local Hosting - Additional protections needed for file:// usage

Ready to Secure Your Content?

Protect your web code with Domain Lock and other advanced security features today.

Try Web Code Protector Now

Frequently Asked Questions

Can I allow multiple domains?

Yes! The current implementation supports checking against one primary domain and its subdomains. For multiple unrelated domains, you would need to implement additional logic or use multiple protected versions.

Does Domain Lock work with CDNs?

Yes, as long as the final domain where the content is displayed matches your allowed domain. The check is performed on the client side when the code executes.

Can I change the allowed domain later?

You would need to reprotect your content with the new domain settings. Once protected, the domain lock rules are embedded in the code.