Hello everyone. Currently my app ( which my customer owns, I am just developing ) is using IP address filter to authenticate user login. As the app grow, there is need to share part of the app to external users. This is become troublesome cause we will have to add the external user IP address to the list everytimes we issue a new external user ( which is a lot ). So here is what my customer want to do: restrict access to internal part of the app to client base authentication ( mac address, cookie .. etc, anything to make sure the access is from a permitted location ) as for external part, just ID, password authentication is sufficient I have been searching around but haven’t found any idea how to get this done. Any advice or guidance would be greatly appreciated. update: I find this module seem to be able to solve my problem : https://appstore.home.mendix.com/link/app/1752/ I want to restrict like this for internal part ( which require user to have internal role ) → set the role to be able to login only from a range of ip for external part ( user with external role ) → allow all ip to be able to login this is working fine but only 1 small details with this module. When Internal user login from un-allowed ip address, it give “The usersame or password you entered is incorrect” which is misleading. Anyone has experienced this before and how to solve this?