App Settings
Configure security, downloads, sessions, and integrations per application.
Access Controls
| Toggle | Effect |
|---|---|
| App Status | Enable/disable entire application |
| HWID Lock | Bind accounts to hardware ID |
| Force HWID | Reject login without HWID param |
| Block VPNs | Reject VPN/proxy IPs |
| Hash Check | Validate client exe MD5 on init |
| Anti-Tamper | Replay block, IP bind, strict hash, HWID session |
| Nonce Chain | Require nonce on each request (advanced) |
| Bind Session IP | Reject if IP changes mid-session |
| App Paused | Block all logins temporarily |
Download & Update
- Application Version — must match client
ver - Auto-Update Link — returned on
invalidver - Welcome Download — optional link for customer panel
Security & Restrictions
- Max login attempts per IP
- Max accounts per HWID
- HWID reset cooldown (days)
- Min HWID length
- Geo block (country codes JSON)
- Captcha on register (hCaptcha / Turnstile / reCAPTCHA)
Session Management
Session TTL — how long sessions stay valid (minutes). Extended on each authenticated request.
File Hashes
Add MD5 hashes of your compiled exe in the Hashes section. Required when Hash Check + Anti-Tamper are enabled.
INFO
Details: Anti-Tamper
Custom Messages
Override default API error messages per app — useful for branding or localization.
API Functions
Enable/disable individual API types (login, register, chat, webhook, etc.) per app.