It's easy to use SpeedCurve to test URLs that are publicly available, but sometimes you might want to test URLs that are private (password protected or inside your corporate firewall). We have several ways of making this work.
If you need to keep your development or staging site private, SpeedCurve supports Basic Authentication allowing you to put it online behind a username and password. To give SpeedCurve access to the site, edit your Settings and add a Basic Authentication username and password for the site.
Click the padlock icon next to a URL to add basic authentication details.
Login Forms, Headers and Cookies
If your site is behind a login form, SpeedCurve supports the WebPageTest scripting language which can be used to fill out the form or add cookies/headers in order to be authenticated. You can find some example scripts in our article about testing pages that require authentication.
SpeedCurve testing agents use the standard WebPageTest user-agent string. You can give the SpeedCurve testing agents access to your site by searching for the string "PTST/SpeedCurve" in the user-agent request header and whitelisting that traffic. Lighthouse uses a different user-agent string that you can whitelist: "Chrome-Lighthouse".
Whitelisting IP Addresses
SpeedCurve test agents run in Amazon data centers and don't have static IP addresses that can be added to a whitelist. You could allow all traffic from Amazon AWS, but we don't recommend doing that.
Private Test Agents
Customers on annual plans valued at $12,000 or more can deploy their own WebPageTest agents inside the firewall.