How to make Deploy previews private, i.e. inaccessible to public when they attempt to visit branch-name--username.netlify.com?

[marinoguerieri]

About me

• My name: Marino Guerieri
• I've used Netlify: a little

My question in a little more detail

Hi everyone. I haven't really found an answer to the question though it's quite an obvious issue, at least to me. When I activate Deploy previews, say for the developmentbranch, what I get is development--marinoguerieri.netlify.com link where I can preview my branch. However, it's accessible not just to me (as a logged-in user and an owner of the repo), but to everyone else in this world simply by typing in the URL.

This is a very undesirable behavior and I'd like to stop it, but I'm not sure how. Is there a way to password protect the "subdomain" as in putting HTTP Authentication there? Or anything else really?

I've read about the possibility of configuring authentication through netlify.toml or such, but I'm not yet at the level where I know what I'm doing with it so I'd appreciate any guidance.

EDIT: Is this not available because I'm using a free plan? Pricing page lists Site passwords and Basic authentication headers as features of paid plans.

[iamskok]

I’m having exactly the same question