I have been doing some playing around with a customer portal and web direct. My concern is that I don't want people to access the root menu of my server. i.e. https://subdomain.domain.com/fmi/webd/.
I want them to have access to the solution and interact with it as I see fit, but don't want some clever type to get to the root directory and then see the filemaker webdirect home screen with the app diplayed as an icon like this:
I am in the process of planning migrating my app from dev to production and want to ensure I am covering everything - SSL certificate is the next big one.