Access: Bypass rule by URL


Currently, there isn’t an option to Bypass based on URL. This would avoid having to create an ‘application’ for each URL that needs to be bypassed.


  1. Static image files that are hot-linked.
  2. /.wellknown urls. E.g.: Let’s Encrypt
  3. Apps/APIs that don’t support this type of external authentication, e.g.: Bitwarden Mobile Apps, which accesses a /api url to authenticate and access the data.