Whitelist jitsi meet host domain to application server only

Jitsi meet hosted on different server and web application hosted on another server.
I used iframe api to embed meeting on application.
If any participants found the jitsi meet host domain, they can go to jitsi meet host domain and can access the meet after moderator starts the meeting.
I want to prevent this. Is there any way to whitelist jitsi iframe only for application server?

I tried allow deny option in nginx. but no luck.

Use jwt token

1 Like