This article will address the following:

  1. Whitelist of Domains Overview
  2. Domain Lists
  3. Developer Notes

Whitelist of Domains Overview

Summary: A Whitelist of domains is essentially a list of pre-approved programs that are safe and/or necessary for product within LiveTiles to function properly. In our case, we need specific libraries to either pull data or style our sites the way they should.

  • For instance, for the Calendar Tile to work, it requires numerous plug-ins which are located in cdnjs.cloudflare.com.
  • LiveTiles Design relies on content distribution networks for product assets, performance monitoring and core product functionality.

Domain Lists

Below is a list of all domains that need to be Whitelisted or allowed for LiveTiles Design to work:

  • ltcdn.blob.core.windows.net
  • cdnjs.cloudflare.com
  • code.jquery.com
  • maxcdn.bootstrapcdn.com
  • ltls.azurewebsites.net
  • cdn.ckeditor.com
  • cdn.datatables.net
  • Itd.azureedge.net

The following domains are also used for Social Networking Tiles:

  • platform.twitter.com
  • connect.facebook.net
  • c64.assets-yammer.com
  • s0.assets-yammer.com

The following are cloud-specific:

  • westus.livetiles.cloud is the domain for the connection to the enterprise environment. 
  • us.livetiles.io is the domain for the connection to the teams environment. 
  • tokens.livetiles.io is the service that handles authenticating the tiles against O365/Azure AD
  • login.microsoftonline.com is the service that actually does the login against Azure AD

The following are additional domains for various purposes (Tiles and more): 

Developer Notes

  • Most of the domains above that are CDNs for hosting JavaScript files should have a fallback URL at Itd.azureedge.net, so many of the ones above are optional. This means if the requests fails, it will fail back to the file hosted on our CDN at Itd.azureedge.net. 

Did this answer your question?