Account Access

This page covers signup, sign in, email verification, and password reset.

Sign Up (New Organization)

Use this when your organization is starting fresh.

1. Go to /login.
2. Select New here? Create an account.
3. Enter organization name, your name, email, and password.
4. Submit the form.

After signup, AccessLedger creates a new organization and signs you in as the first admin user.

Email Verification

AccessLedger sends a verification email during signup.

1. Open the verification link in your inbox.
2. If the link expires, go to /resend-verification to send a new one.
3. If your email is not verified, the dashboard shows a warning banner.

Verified email is required for notification delivery.

Sign In

1. Go to /login.
2. Enter your email and password.
3. Select Login.

Notes:

• Passwords must be at least 14 characters, include at least one letter and one number, and (when the breach check is enabled, which it is by default) avoid values that appear in known breaches.
• Login attempts are rate-limited. If you see a lockout message, wait and try again.

Reset Your Password

1. Go to /login.
2. Select Forgot your password?
3. Enter your email and submit.
4. Check your inbox for a reset link.
5. Open the link and set a new password.

Notes:

• The app returns the same success message whether the email exists or not.
• Reset links expire based on server configuration (RESET_TOKEN_TTL_MINUTES, default 60).

Email and Organization Scope

One email can belong to one organization.

If an email already exists, signup shows an error and asks the user to sign in instead.

Additional Users and Role Changes

Admins can manage users directly in Settings -> Users:

• Invite users (token link, expires after the configured TTL)
• Change roles
• Deactivate users (disables login)
• Delete users (hidden in tenant UI but retained for audit)