Can I password protect my Atom feeds?

By default DeployBot uses token authentication for all Atom feeds. Every user has his own unique secure token that is built into every RSS feed that a user has access to. Token authentication is very convenient as it doesn't require a user to enter their username and password each time they access a feed. It is also supported by the vast majority of feed readers.

However, token authentication can be potentially dangerous if users choose to share their feed URLs, which we strongly recommend not to do. Account owners can switch their accounts to use regular and more secure password authentication for all RSS feeds. This kind of authentication will require a username and password every time the feed is accessed.

While password authentication provides more security, it isn't supported by many popular feed readers, so we made it optional.

You can turn on password authentication for atom feeds in Account → Security: