Under the BuddyBoss dashboard - Settings - General - Privacy, there are new options for you - "Restrict REST API access to only logged-in members" and "Restrict RSS feed access to only logged-in members".



Restrict REST API access to only logged-in members

When enabled, all of these settings will be restricted. By default, there are some parameters that are accessible even without logging in. With that option enabled, it will require to access all these API endpoints to have a valid login. You can check this article to learn more: https://www.buddyboss.com/resources/api/ 


Restrict RSS feed access to only logged-in members

This option is similar to a private network but unlike a private network, the RSS feed is private. For example, if your site is publicly visible and you want to make the RSS feed private, you can enable that option so that accessing the feed URL will redirect you to the login page. 


All URLs are publicly visible however if the slug ends with /feed/, it will redirect to the login as this is the reserved keyword for RSS.