Some apps hosted on App Platform don't want just anyone making connections to them (even if they have their own auth in place - defence in depth). It would be useful to have a "Trusted Sources" feature similar to Managed Databases where you can add IPs and other DO sources to an allow list that has access to the app and drop any other connection attempt.