A password-protected dynamic code does not redirect immediately after scan. Instead, the scanner lands on a password prompt — only after a correct entry does the redirect run.
When is it useful?
- Internal documents that should not be discoverable via search engines
- Presentation links that should temporarily stop accepting new viewers
- Exclusive content for event attendees (password printed on the badge)
Prerequisites
- Dynamic code (static codes cannot be protected)
- Tier 2 or higher
Steps
- My codes → Open a code.
- In the Password protection section, enter the new password (min. 6 characters).
- Click Protect — from now on the redirect prompts for the password on scan.
Remove protection
Same section, click Remove protection. The code is freely accessible again; the code URL itself does not change.
What passwords do NOT provide
- No encryption — if someone already knows the target URL (e.g. it was shared once), they can open it directly. The password only protects the scan-initiated path.
- No server-side brute-force throttling — we show a captcha after too many failed attempts, but that is not a hard rate-limit. For truly sensitive data use your own auth infrastructure.