Password-protect a link

Visitors see a password gate before the redirect fires. Hash-only storage; we never see the password.

Useful when you're sharing a Google Doc, a draft, or anything you'd rather not have indexed by random scrapers. The password is PBKDF2-hashed in the browser before it ever hits our server, so even we can never read it back, only replace it.

Add the password

• All links → ⋯ on the link → Edit → Access tab.
• Toggle Password-protect this link on. A password input appears.
• Type a password (6+ characters). Hit Save.

Free accounts can password-protect up to 2 links. Past that the toggle locks; Pro removes the cap.

What visitors see

Instead of redirecting, the short link serves a brand-styled "locked" page with a password input. They type the right password, get a 30-minute session cookie scoped to that one link, and the redirect fires. Wrong password → friendly retry.

Add a hint message

Below the password toggle there's a Message on the gate field. One line, visible to the visitor above the password input. Useful for "Ask the sender for the password" or "Year you joined".

Change or remove the password

• Same Access tab. Type a new password to replace the existing one.
• Or toggle the protection off to remove the password entirely.
• We never display the current password; there's nothing to copy back. Replacement is the only edit path.