The API Security Enforcer (ASE) maintains both allow lists and deny lists.
- Allow list
- List of safe IP addresses, cookies, OAuth2 Tokens, API keys, or usernames that are not blocked by ASE.
- Deny list
- List of bad IP addresses, cookies, OAuth2 Tokens, API keys, or usernames that are always blocked by ASE.