Create a Hostname Allowlist
You can provide a list of allowed hostnames to protect your site from certain host header attacks.
A B2C Commerce instance responds to a request only when the instance owner added the hostname to the allowlist. B2C Commerce-provided instance hostnames (your.instance.hostname.example.com) are always valid. You donβt have to add them to the allowlist explicitly.
Note: This feature doesn't apply to hostnames in
storefront sites.