Hey @brianm, you’re correct that our IP addresses change frequently so that method’s a no-go. You could certainly do something URL-based. You could also set a header or secret in a Netlify Function that you check on the server side, or set a cookie on our side that you check on your side. I’m linking to a post where someone else was asking something similar:
Please let us know if we can answer any other questions on this!