Allowlisting for InVision
- 03 May 2023
- 2 Minutes to read
- DarkLight
Allowlisting for InVision
- Updated on 03 May 2023
- 2 Minutes to read
- DarkLight
Article Summary
Share feedback
Thanks for sharing your feedback!
If you have a proxy, firewall, VPN, or other network security in place, some InVision services may be blocked or not function properly.
Fortunately, many IT teams that have implemented network security also have provisions for allowlisting specific services. If you’ve run into issues related to network security restrictions, then you'll need to work with your IT and/or security team to allowlist InVision.
To allowlist InVision, your IT/security team will need to know the list of domains (e.g., auth.invisionapp.com) and ports (e.g., 443) outlined in the tables below, so they can make exceptions for network traffic going to these services. Allowlisting requirements for InVision depend on whether you have a V7 account, a V6 account, or a Private Cloud account. Please follow the guidelines for the environment that is relevant for your team.
Warning: Remember, you’ll need to modify any domain above that includes
{your-subdomain}, replacing your-subdomain with your specific InVision subdomain. For example, if your team were called Sunburst Solutions, this domain and port accordingly:auth-api.{your-subdomain}-io.invisionapp.com:443
~
auth-api.sunburst-solutions-io.invisionapp.com:443
If you’re not sure what value to enter here, please contact InVision Support for guidance.
The domains and ports you'll need to allowlist for InVision services may change in the future.
Process for allowlisting
The process for allowlisting varies depending on the service and device used. As a result, we’re not able to provide specific directions for allowlisting these services. If you believe you’re subject to network security that’s blocking InVision, you’ll need to speak with your IT team for guidance on how to proceed.
Domains and ports to allowlist: InVision V7
Required
Facilitate the sign-in process |
projects.invisionapp.com:443 |
login.invisionapp.com:80 |
login.invisionapp.com:443 |
assets.invisionapp.com:443 |
static.invisionapp-cdn.com:443 |
| Enable integrations |
integrations.invisionapp.com:443 |
jira.global.invisionapp.com:443 |
confluence.global.invisionapp.com:443 |
trello.global.invisionapp.com:443 |
Enable the credit card billing system |
rest.zuora.com:443 |
WebSockets |
wss://elb-sm.codox.io |
wss://*.invisionapp.com |
wss://ws.pusherapp.com |
wss://invision-realtime.ably.io |
wss://*.ably-realtime.com |
| Host assets or visual styling, client-side app feature functionality, and imagery |
static.invisionapp-cdn.com:443 |
assets.v7-io.invisionapp.com:443 |
Monitoring, performance, and error reports |
api.bugsnag.com |
https://js-agent.newrelic.com:443 |
https://bam.nr-data.net:443 |
| cdn.segment.com |
| api.segment.io |
| Support Enterprise forms and Marketing CRM |
| *.hubspot.com |
| Support in-app chat functionality |
| *.driftt.com |
| *.braze.com |
Additional domains and ports to allow per product
| Power Freehand |
freehand-api.invisionapp.com:443 |
auth-api.invisionapp.com:443 |
| api.amplitude.com:443 |
app.launchdarkly.com:443 |
events.launchdarkly.com:443 |
api.mixpanel.com:443 |
api-js.mixpanel.com:443 |
cdn.mxpnl.com:443 |
| Power Craft |
{your-subdomain}.invisionapp.com:443 |
{your-subdomain}.invisionapp.com:443/craft/* |
Enable Craft updates |
craft-assets.invisionapp.com:443 |
craft-manager-api.invisionapp.com:443 |
| Power the DSM (Design System Manager) tool |
assets.{your-subdomain}-io.invisionapp.com:443 |
assets.v7-io.invisionapp.com:443 |
| Facilitate real-time notifications for DSM library updates |
*.pusher.com:443 |
ws.pusherapp.com:443 |
Domains and ports to allowlist: InVision V6
Required
Facilitate the sign-in process |
auth-api.invisionapp.com:443 |
login.invisionapp.com |
projects.invisionapp.com:443 |
s3.invisionapp-cdn.com:443 |
static.invisionapp-cdn.com:443 |
Enable integrations |
integrations.invisionapp.com:443 |
jira.global.invisionapp.com:443 |
confluence.global.invisionapp.com:443 |
trello.global.invisionapp.com:443 |
| Host assets or visual styling, client-side app feature functionality, and imagery |
static.invisionapp-cdn.com:443 |
assets.v7-io.invisionapp.com:443 |
Monitor performance and error reports |
api.bugsnag.com |
https://js-agent.newrelic.com:443 |
https://bam.nr-data.net:443 |
| Support Enterprise forms and Marketing CRM |
| *.hubspot.com |
| Support in-app chat functionality |
| *.driftt.com |
| *.braze.com |
Support in-app feedback functionality |
invisionapp.zendesk.com:443 |
Additional domains and ports to allow per product
| Power Freehand |
freehand-api.invisionapp.com:443 |
| api.amplitude.com:443 |
app.launchdarkly.com:443 |
events.launchdarkly.com:443 |
api.mixpanel.com:443 |
api-js.mixpanel.com:443 |
cdn.mxpnl.com:443 |
Power Craft |
craft-api.invisionapp.com:443 |
Enable Craft updates |
craft-assets.invisionapp.com:443 |
craft-manager-api.invisionapp.com:443 |
Facilitate analytics services for monitoring the health of Craft |
google-analytics.com:443 |
api.segment.io:443 |
cdn.segment.com:443 |
Control file uploads and/or Craft Manager |
api.invisionapp.com:443 |
s3.amazonaws.com:443 |
Power the DSM (Design System Manager) tool |
assets.{your-subdomain}-io.invisionapp.com:443 |
assets.v7-io.invisionapp.com:443 |
Facilitate real-time notifications for DSM library updates |
*.pusher.com:443 |
ws.pusherapp.com:443 |
Display the necessary fonts on the team selection screen |
fonts.googleapis.com |
Domains and ports to allowlist: Private Cloud
Required
Facilitate the sign-in process |
login.invisionapp.com |
static.invisionapp-cdn.com:443 |
auth-api.{your-subdomain}-io.invisionapp.com:443 |
Enable integrations |
integrations.invisionapp.com:443 |
jira.global.invisionapp.com:443 |
confluence.global.invisionapp.com:443 |
trello.global.invisionapp.com:443 |
Host assets or visual styling, client-side app feature functionality, and imagery |
static.invisionapp-cdn.com:443 |
assets.v7-io.invisionapp.com:443 |
Monitor performance and error reports |
api.bugsnag.com |
https://js-agent.newrelic.com:443 |
https://bam.nr-data.net:443 |
Support in-app feedback functionality |
invisionapp.zendesk.com:443 |
Additional domains and ports to allow per product
| Power Freehand |
freehand-api.invisionapp.com:443 |
auth-api.invisionapp.com:443 |
| api.amplitude.com:443 |
app.launchdarkly.com:443 |
events.launchdarkly.com:443 |
api.mixpanel.com:443 |
api-js.mixpanel.com:443 |
cdn.mxpnl.com:443 |
Power Craft |
craft-api.{your_subdomain}-io.invisionapp.com:443 |
Enable Craft updates |
craft-assets.invisionapp.com:443 |
craft-manager-api.invisionapp.com:443 |
Facilitate analytics services for monitoring the health of Craft |
google-analytics.com:443 |
api.segment.io:443 |
cdn.segment.com:443 |
Control file uploads and/or Craft Manager |
s3.amazonaws.com:443 |
Power the DSM (Design System Manager) tool |
assets.{your-subdomain}-io.invisionapp.com:443 |
assets.v7-io.invisionapp.com:443 |
Facilitate real-time notifications for DSM library updates |
*.pusher.com:443 |
ws.pusherapp.com:443 |
Allowlisting video content
In situations where all video content is blocked, regardless of source, allowlisting the following domains will ensure our content comes through:
- *.wistia.com
- fast.wistia.net
- embedwistia-a.akamaihd.net
- litix.io
Was this article helpful?