LeashLeash

Access Control

Restrict who can use your deployed apps without writing a line of auth code. The Leash gateway checks the visitor before the request ever reaches your container.

Most apps don't need to do anything more than this. Pick a visibility level on the dashboard and the gateway enforces it — unauthorized requests get redirected to sign-in, and your application code can assume every request is from someone allowed in. If you need to know which user is calling your handler (to scope data per-user, for example), that's a separate concern — see User identity.

Visibility levels

Public

Anyone with the URL can access the app. This is the default for all deployments.

Private

Only the app owner can access it. Requires login to view.

Team

Only members of your organization can access. Requires Google sign-in with a matching company email domain.

Set visibility in the dashboard

Leash deploys the app first, then you can change access control from the dashboard at any time.

Apps → Access Control panel
Visibility toggle on the app's Access Control page.
  1. Open your app's dashboard at /dashboard/apps/<id>
  2. Click SettingsAccess Control
  3. Pick Public, Private, or Team

Change visibility later

Open your app in the Dashboard, go to Settings, and update the visibility level. Changes take effect immediately — no redeploy required.