That said, you can follow these best practices below to ensure your site is as secure as possible. Or, you can use our hosted content feature to 100% secure HTML content that stored in Memberstack.
- Never link directly from a public page to your gated content. Ideally, the only way a person can access gated content is by logging into their account and allowing Memberstack to redirect them. If you need to provide members with a link to access their content, you can use the data attribute
data-ms-action="login-redirect". That attribute will automatically populate with a member's login redirect if they are logged in.
- Set your content visibility to display: none; by default. And then use the data-ms-bind:style attribute to change it to display block only after Memberstack has loaded.
- Make your URLs unguessable. This will prevent random visitors from landing on a page by mistake. For example,
- Remove/modify your sitemap so search engines and savy visitors can’t see what pages are available on your site. This is a best practice when using Memberstack anyway. Here's how to update your sitemap in Webflow.
If you do those 4 things, your site will be secured in the same way as Google Photos! Here’s one of my private photos to prove it.