Caido

Domain Allowlist

For security, only defined domains can access the Caido API and interface.

For example, when utilizing a domain that resolves to 127.0.0.1 to proxy local traffic, the domain must be added to the Allowed Domains list.

Desktop Allowed Domains setting.

Caido CLI

To add a domain to the allowlist with the Caido CLI, launch Caido with the --ui-domain <domain> argument.

--ui-domain example.com

Desktop Application

To add a domain to the allowlist within the Caido desktop application, in the launch window, click on the button attached to an instance and select Edit.

The Edit instance option.

Type a domain name in the Enter domain (e.g., example.com) input field and click on the + button.

Adding a domain to the allowlist.

Once you have defined the allowlist, click on the Save button to update and save the configuration.

Docker

To add a domain to the allowlist when running the Caido Docker image, either:

  • Override the default command with:
docker run caido/caido caido-cli --no-renderer-sandbox --no-open --listen 0.0.0.0:8080 --ui-domain=example.com
  • Or override the Docker Compose:
services:
  caido:
    image: caido/caido
    command: ["caido-cli", "--no-renderer-sandbox", "--no-open", "--listen", "0.0.0.0:8080", "--ui-domain", "example.com"]