[tadhunt]

We agree that this is an important use case, and is something we considered during the design. It is now supported by placing a Web Application Firewall in front of the App Engine application. We chose to limit the initial set of firewall features to IP address range blocking only — in part because that's sufficient to enable a WAF to front an App Engine Application.

-Tad Hunt (Manager on the App Engine team that brought you this firewall)

[not_that_noob]

Got it - thanks. Any plans to add this as an integrated feature so we don't have to set up a separate WAF?

[tadhunt]

Feel free to reach out, my email is in my profile. We can discuss what you're looking for.

[not_that_noob]

Would love to - couldn't find your email in your profile tho.

To keep the UI simple, I'd like to specify a URL and specify the IP range(s) that are allowed to access each. Bonus points if I can in addition to web UI submit and change the map programmatically. The first allows for greater security for admin pages and similar internal uses. The second allows us to provision for our enterprise users dynamically, who are at well known IPs.