Create distribution pages that can only be accessed by authenticated members
Thank you for using DeployGate.
As part of our efforts to strengthen distribution page security for DeployGate Enterprise customers, we have added a feature that restricts distribution page access to authenticated members only.
Background
Historically, DeployGate’s “distribution page” has facilitated the easy distribution of apps to external users.
When creating a distribution page, simply sharing its URL allows a recipient to install an app’s specific revision without a DeployGate account.
Additionally, it’s possible to change the revision while keeping the distribution page’s URL as is. This means that not only can you use it for external distributions, but you can also use it internally within the development team. For example, QA testers can use it to test specific revisions. Or, team members can manage different builds for “local debugging,” “test server,” or “production server” by creating unique links for each purpose.
However, on the flip side, many customers (primarily DeployGate Enterprise) expressed concerns that the “distribution page” was unusable. The fact that distribution pages were “accessible to anyone with the URL” meant that they did not meet many organizations’ security policies, which require user authentication. While we have always offered a “require password” privacy settings option, it also adds complexity by requiring additional oversight and periodic password changes. As such, there was a demand for a per-user authentication option.
Added “Members Only” privacy setting
To solve this problem, DeployGate has added a new privacy setting — “only authenticated members can join” — to DeployGate Enterprise distribution pages.
This new option complies with security policies that require user authentication while maintaining the flexibility to manage distributions through the distribution page.
Distribution page access is determined by a user’s access privileges with a specific app. A user must have Tester access (or higher) to view a distribution page. Users will be directed to a 404 Not Found page if they are not logged in or do not have sufficient access permissions.
Please note that the “Unlisted” and “Require password” privacy settings options remain available. For more detailed information about distribution pages and how to use them, please refer to this guide.
https://docs.deploygate.com/docs/guide/link-distribution/distribute-by-link/
How to create a “Members Only” distribution page
To create a distribution page that can only be used by authenticated members, first create a distribution page as normal and then change the privacy settings.
Go to the distribution page’s settings and select “Only team members with access to the app” for the privacy settings.
This members-only privacy option is not available for existing distribution pages or those with existing users. You must create a new distribution page. Additionally, if you change the privacy settings of a distribution with this members-only option enabled, it cannot be reversed.
Future Plans
As discussed in this post, DeployGate continues to make small improvements to work towards updating our overall services while being mindful of minimizing disruptions to our users.
Your feedback is invaluable, as it helps us to improve our services. If you have requests, comments, or concerns about our services, please use #deploygate on Twitter or contact us. Please let us know if you encounter any issues, as it helps us identify areas to address.
Thank you for your continued support of DeployGate.
