SkyFollowing
All docs
Getting started

Connect your Bluesky account

Authorize SkyFollowing with Bluesky's official OAuth in under a minute. What the connection can do, how sessions are protected, and what each account state means.

Updated Jul 1, 20263 min read

SkyFollowing connects to Bluesky through the official AT Protocol OAuth flow. You approve the connection on Bluesky's own consent screen, so your password never touches SkyFollowing, and you can revoke access from either side at any time.

Connecting in three steps

  1. Enter your handle on the Accounts page (with or without the @). SkyFollowing resolves it and starts the OAuth flow.
  2. Approve on Bluesky. You are redirected to Bluesky's consent screen, where Bluesky itself asks whether to grant SkyFollowing access.
  3. Land back in the dashboard. The account appears in your workspace with its health score, warmup state, and a fresh daily budget, ready for its first campaign.
Under a minute, no app passwords

The whole flow is a single redirect round trip. SkyFollowing never asks for your password or an app password; if any tool does, close the tab.

What the connection can and cannot do

  • Acts only with your grant. Follows, unfollows, and engagement run through the OAuth session you approved, with nothing outside it.
  • Sessions are encrypted at rest. OAuth tokens are stored encrypted and are never exposed to the browser or the API.
  • Revocable from both sides. Disconnect in the dashboard, or revoke SkyFollowing from Bluesky's settings. Either one ends access immediately.
  • Your followers are untouched by leaving. Disconnecting stops campaigns; it never unfollows anyone or changes your account.

Account states

StateWhat it meansWhat to do
ActiveSession is healthy and campaigns can runNothing. This is home.
Warming upThe account is inside its warmup ramp, so daily caps are reducedLet it ramp. See the safety guide for the exact schedule
ErrorThe last action failed, usually an expired or revoked sessionUse Reconnect on the Accounts page; it repeats the OAuth flow
Safety holdBan-risk reached critical and campaigns were paused automaticallyReview the risk factors shown, fix the cause, then resume

Connecting more than one account

Starter includes 1 connected account, Pro includes 3, and Agency includes 10. Every account is fully isolated: its own encrypted session, its own daily counters and warmup state, and its own ban-risk score. One account hitting a safety hold never affects the others. On Agency, each account also gets its own daily follow budget of up to 250; on Starter and Pro the plan's budget is shared across the workspace.

Frequently asked questions

Does SkyFollowing ever see my Bluesky password?

No. Authorization happens on Bluesky's own consent screen through official OAuth. SkyFollowing receives a scoped session, stores it encrypted, and never handles your password.

How do I revoke access?

Two ways, both instant: disconnect the account inside SkyFollowing, or revoke the SkyFollowing grant from Bluesky's settings. Campaigns stop and nothing is unfollowed.

My account shows an error state. What happened?

Almost always an expired or revoked OAuth session. The Accounts page shows the last error and a Reconnect button that repeats the consent flow and picks up where things left off.

See it in your own dashboard.

Every setting on this page ships with safe defaults. Free for 7 days, no card required.

Start free trial