You can restrict access and add authentication requirements to your publications to make some content private.

Readz offers you a number of ways to restrict access to private publications. These include:

  • email based access
    • list of email addresses
    • your email domain
  • SAML / single sign-on

In this guide, we will explain the properties of these different access limitations, and we will show you how to set up and configure these options for your publications.
Public Publications
  • Public publications
    • Note: Search Engine Indexing
  • Access restriction based on email addresses
  • Access restriction based on your email domain
  • End user experience with email based authentication
  • Access restriction with SAML
  • End user experience with SAML / single sign-on
Public publications are accessible for everybody all the time after publishing. Anybody who has the link can see the contents of the pages in the publications. This content can be shared on social media, and also, search engines are able to crawl and index these pages so they can be found by searching on the web.

By default, the access restriction of your publications is set to 'public'. You can find this setting on the 'Preferences' section of your publication, by selecting 'Access Restriction'.

When 'Public: Anyone on the Internet can access the content' is selected, then your publication is accessible for everybody.
Note: Search Engine Indexing

You can control whether your page is indexable by search engines or not in the public mode. By default, all public pages you publish are indexable by search engines. For all publications, search engine indexing is off by default and for private publications it cannot be turned on.

If you prefer your publication not to be indexed by search engines, you can turn search engine indexing off.

Turning off search engine indexing you publication will only be accessible by people who have the exact URL of your publication. By selecting this option and using a non-obvious URL, you can create a light form of access control. Of course, even though your URL will not be found by searching on the internet, it can still be shared.

You can turn off search engine indexing this for the whole publication or for specific pages. To turn off search engine indexing for the whole publication, go to 'Settings' and the search engine indexing option will appear on the top.
You can turn off search engine indexing for specific pages in the editor view of that page. You can find the 'SEO settings' on the top menu bar in your editor.
Clicking the SEO settings option will open up the 'Page SEO Details', where you select whether you want this page to be indexed by search engines or not.
Private Publications With Access Restriction Based On Email Addresses
You can restrict access to your publications to the owners of specific email addresses. By selecting this option, Readz will verify that the person who tries to access your publication is indeed the owner of an 'allowed' email address by double verification.

In the verification process, Readz will send a verification email to the specified email address. Once the end user has verified their email address, they are granted access. This is a one-time setup which afterwards grants automatic access to the end user, and avoids that your readers have to log in with email and password over and over again.

Note that the verification process will happen on any new browser or device used by the end user for additional security.
You can select to use this level of privacy by going to 'Settings' of your publication, selecting 'Access Restriction' and then selecting 'Private: Content is accessible to anyone in your selection' and selecting 'Email based'.
In the field under this selection you will find the option to 'Manage Subscribers'. By clicking this option you will be able to manage the email addresses that have access.
In the field under this selection you will find the option to 'Manage Subscribers'. By clicking this option you will be able to manage the email addresses that have access.
In the 'manage subscribers' panel, you will be able to see and manage all the email addresses which have access to your publication.

You can new email addresses manually or by CSV upload.

For each email address you have the following options:

- 'active' status. You can turn off access for a specific email address without deleting the address with this option
- 'end date'. If you want access to your content to end on a specific date, you can enter a date when you add the email address

The 'Manage Subscribers' dashboard will also give you information on:

- 'Last Request': when this email address last tried to access your content
- 'Request Count': how many times an email address has tried to access your content
- 'Last Access': when this email address last accessed your content
- 'Access Count': how many times an email address accessed your content
Private Publications With Access Restriction Based On Your Email Domain
This option is essentially the same as the previous option, but instead of adding specific email addresses, you can immediately grant access to anyone who has an email address belonging to specific domains.
In the field under the selection you will find the option to 'Manage Subscribers' (see above).
You can add all the domain names you'd like to have access in the field above.

If there are specific email addresses belonging to an 'approved' domain for whom you'd like to manage or remove access, you can do so by adding and managing these specific email addresses in the 'Manage Subscribers' dashboard. The settings entered here for specific email addresses will override the general domain approval.
End User Experience With Email Address Authentication
When a visitor tries to access your restricted content for the first time, they will see a notification asking them to enter their email address.
Log-in screen customization
You can customize this login screen, you can change the logo, the text under the 'Submit' button and you can also add a link to a page with other info or help.
These authentication links are unique, secure and valid for 1 single use. Once the user clicks the link, a cookie is placed on the user's computer for future visits. No password is needed.
If the visitor enters a valid email address, they will receive a secure link which will give them access to the restricted content.
Email customization
You can (and should) customize this email and the sender. Your readers will expect to receive an email from your domain, and the amount of emails that can be sent from Readz is limited.

If you want to change only the sender, you can set up the emails to be sent from your email server.
If you want to change the sender AND the format or content of the email, you can connect to Mandrill, which is a transactional email platform from Mailchimp. The platform is not free, but starts at 20 USD for 500k emails. More details, please see here:

Mandrill will allow you to use email templates that you made with Mailchimp's visual email editor.

More information on the use of Mandrill can be found here.
Private Publications with single sign-on: SAML
Clients who are on an enterprise plan with Readz can use SAML for authentication.

Security Assertion Markup Language (SAML) is an open standard for exchanging authentication data between different systems. It is an industry standard and uses cryptography and digital signatures for pass a secure sign-in token from your network to Readz.

In practice, it means that you will have single sign-on all users who have access to your internal network will have access to the content you published on Readz without additional authentication.
If you want to set up SAML, please get in touch with your client manager to set up the configuration.
End User Experience With SAML
After SAML has been set up, your publications will behave exactly like your other internal applications and content. All visitors who are logged in to your internal network, will be able to access and read your publications directly. If they are not logged in to the network, they will have to do so to get access to the publication.
Normally, a user does not have to re-authenticate for subsequent visits to the publication.
The demand for re-authentication occurs only when the authentication cookie expires or is not present (when the user is on a different device or different browser). If the user clears their cookies, they will also need to re-authenticate.

Some browsers however have a unique way of handling cookies. For example, if your users are on Internet Explorer and have the maximum security settings enabled, they will have to explicitly allow to accept the authentication cookie for your content. If they do not accept the authentication cookie, they will have to re-authenticate with each session.

In the large majority of cases however, there is only the need to authenticate one single time.

Public & Private Publications