Quoted from Discord: "Could we have an option to restrict / allow user access by ip range? Case in point, exposing Kitsu to the internet but only allowing certain accounts the ability to remotely access. This could be set in the user preferences (defined by the studio admin) or set based on Role type. This would ensure that management or admin could access and allow the client (or specific clients) to access without the need to pass VPN credentials and ensure security.

eg: on login page, the system checks the IP address of the login. If it's within the defined allowed IP range(s), the user is allowed access, else they are denied unless the have the "allow outside access" flag enabled on their account"

additional - this could be defined in the user's preferences set up by the studio admin account.