Search Ctrl+K
Skip to Content
ApplicationsAuthPassword Recovery

Password Recovery

The password recovery feature allows you to securely reset your password and restore access to your account if you forgot it or suspect it may have been compromised.

Important for security

After a successful password reset, all active sessions on all devices will be automatically terminated. This prevents unauthorized access to your account if someone was already logged in. You will need to log in again with your new password.

When to reset your password

It is recommended to use the password recovery feature in the following cases:

  • Forgot password — you cannot remember your account password
  • Suspected compromise — you believe someone may have learned your password
  • Haven’t changed password in a while — more than 6-12 months have passed since the last change (security recommendation)
  • Suspicious activity — you noticed unfamiliar sessions or actions in your account
  • Used password on other sites — if any other site where you used the same password was breached

Note: If you registered via Email OTP, Phone OTP, or social networks (Google, Facebook, etc.) without setting a password, you don’t have a password to reset. Use your usual login method.

How to reset your password

Go to the login page

Open AUTH and go to the system login page.

Click “Forgot password?”

Below the password input form, find the “Forgot password?” link and click it.

Enter your email

Specify the email address associated with your account. Make sure you enter the exact address you used during registration.

Check your email

Within a few minutes, you will receive an email with a password reset link at the specified address.

Tip: If the email doesn’t appear in your inbox, be sure to check your “Spam” or “Junk” folder.

Open the email and click the “Reset Password” button or link. The link will automatically open in your browser.

Important: The password reset link is valid for 1 hour. After this time expires, you will need to request a new email.

Enter a new password

On the password reset page, enter your new password twice for confirmation. Make sure the password meets security requirements (see below).

Confirm the reset

Click the “Set New Password” button. After a successful reset, you will be redirected to the login page.

Log in with your new password

Use your new password to log in to the system. All previous sessions will be terminated, so you will need to re-authenticate on all devices.

Password requirements

To ensure your account security, the new password must meet the following requirements:

  • Minimum length — at least 8 characters (12 or more recommended)
  • Uppercase letters — at least one capital letter (A-Z)
  • Lowercase letters — at least one lowercase letter (a-z)
  • Numbers — at least one digit (0-9)
  • Special characters — recommended to use symbols (!@#$%^&* etc.)

Security tip

Use a password manager (e.g., 1Password, Bitwarden, LastPass) to generate and store strong unique passwords. This significantly increases security and eliminates the need to remember complex passwords.

Do not use:

  • Simple passwords like “password123” or “qwerty”
  • Personal information (name, date of birth, phone number)
  • The same password as on other sites
  • Character sequences (“12345”, “abcdef”)

Important notes

Pay attention to important security aspects:

  • Link validity period — the password reset link is valid for only 1 hour. After this time, you will need to request a new email
  • Session termination — after a successful password reset, all active sessions on all your devices will be automatically terminated. This is a security measure
  • Two-factor authentication — if you have 2FA enabled, it will remain active. When logging in with your new password, you will still need to enter the code from the authenticator app
  • One-time link — each password reset link can be used only once. After setting a new password, old links become invalid

Troubleshooting

Password reset email didn’t arrive. What should I do?

If you didn’t receive the password reset email:

  1. Check your “Spam” folder — emails sometimes automatically end up there
  2. Make sure the email is correct — verify that you’re entering the same address you used during registration
  3. Wait a few minutes — email delivery sometimes takes time (up to 5-10 minutes)
  4. Request the email again — return to the “Forgot password?” page and request a new email
  5. Check email filters — make sure your email provider isn’t blocking emails from our system

If the problem persists after all these steps, contact support.

Reset link doesn’t work or has expired

Password reset links are valid for 1 hour after being sent. If the link has expired or doesn’t work:

  1. Return to the login page at AUTH
  2. Click “Forgot password?”
  3. Enter your email again
  4. Check your email and use the new link within an hour

Important: Don’t use old emails — always request a new one if the link doesn’t work. Each link can be used only once.

I don’t have access to my email. How can I recover my account?

If you lost access to the email address associated with your account:

If you have other login methods:

  • Try logging in via Google, Facebook, GitHub, or Discord (if they were connected to your account)
  • After logging in, update your email address in profile settings

If there are no other login methods:

  • Contact support
  • Be prepared to verify your identity using profile information (name, last login date, devices used, etc.)
  • The recovery process may take several days for security verification

Prevention: Always add backup login methods and keep your email address up to date.

I suspect my account has been hacked. What should I do?

If you believe your account has been compromised:

Immediate actions:

  1. Reset your password — use the password recovery feature as soon as possible
  2. Check active sessions — log in to profile settings and terminate all suspicious sessions
  3. Enable 2FA — if not already enabled, activate two-factor authentication for additional protection
  4. Check profile changes — make sure email, phone number, and other information haven’t been changed

Additional security measures:

  • Check other accounts where you used the same password
  • Change passwords on other sites if they matched
  • Check devices for malware
  • Contact support if you noticed suspicious activity

Prevention: Use unique passwords for each site and enable two-factor authentication.

How often should I change my password?

Modern security recommendations:

Regular changes without reason — not required:

  • Previously, it was recommended to change passwords every 30-90 days
  • Modern research shows this often leads to creating weaker passwords
  • It’s more important to have one strong unique password than to frequently change weak ones

When you must change your password:

  • You know or suspect that the password may have been compromised
  • A data breach occurred on a site where you used the same password
  • You used the password on an unsecured or public device
  • You received a notification about suspicious activity

Best practice:

  • Use a long (12+ characters) unique password
  • Enable two-factor authentication
  • Use a password manager
  • Change your password only when there’s a specific reason

If you use a strong unique password and two-factor authentication, there’s no need for regular password changes without a reason.

LoginRegistrationTwo-Factor Authentication
Email VerificationTwo-Factor Authentication

Theme Customizer

Customize & Preview in Real Time

Theming

Primary Color

Mode

Light

Dark

System

Skin

Default

Bordered

Layouts

Layouts

Vertical

Collapsed

Horizontal

Content

Compact

Wide

Direction

Left to Right
(English)

Right to Left
(Arabic)