One way to help mitigate this would to be generate unique subdomains for each site.
In AppEngine, can setup a wildcard * subdomain, to point to your app. So that most users just do direct to your live app. Then if want to stop a particular user hitting your app, can then change the DNS records. Point that specific subdomain elsewhere. THe specific DNS would means the request never even hits AppEngine. You could perhaps even have a second AppEngine app, that does nothing but serve a 503 or 410 or what ever error page. (or if feeling generous a empty file, which would technically valid JS) - this could perhaps be configued by the AppEngine Console. have the *.domain mapping to your production app. Then specific subdomains pointed to a differnt 'blackhole' app. -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/google-appengine. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/CAJCAUuJ8a1B3h6KF8yOB6VCnEqjoi5o%3Dq3nbBvw_tyUZzKmp6Q%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
