Hi All,

My understanding is that when a user tries to use our app, behind the scenes all that happens is that a request is made to the Custom URL where our app is hosted:

e.g., the custom URL could be https://abccorp.com/my-app

But anyone can enter this URL outside monday.com in a web browser. So how do we check if the request is coming from an authenticated user with valid subscription before returning the response? Thanks for your help.