Password Reset Guide
Follow these steps to recover access when you forget your password or suspect that someone else has it. The workflow is split between the request page and the secure link that lets you choose a replacement password.
Request a reset link
Open the Reset password page from the login screen or account menu. Enter your account email address (or submit the pre-filled address when already signed in) to have the app queue a secure reset email.
-
Click Send reset email to start the process. The
create_reset_tokenhelper ties the token to your profile and rate-limits repeated requests so the system stays responsive. - Watch your inbox for the reset message. The email contains a one-time link generated from the token, so you can open the password form directly.
- Tokens expire after one hour and become unusable once the password changes. Generate a new one if you miss the window.
Set a new password
Click the Open reset page button in the panel or copy the token
into your browser to load the secure
/reset/example-token
page—your token will be unique and only works once. The form shows two
fields—one for your new password and one to confirm it. The
reset_password_with_token helper checks that both fields match and that the token has
not expired or been used already.
- Choose a unique passphrase that is at least 12 characters long. Mixing uppercase, lowercase, numbers, and symbols helps protect your account.
- If the link has expired, return to the request form to generate a fresh token.
- Successful submissions redirect you to the login screen with a confirmation message so you can sign in immediately.
Troubleshooting tips
- If the email never arrives, check your spam or junk folder and verify you entered the correct account address.
- If you think someone else triggered the reset, ignore the message—unused tokens expire automatically, and your existing password remains valid.
- For urgent access requests, call the operations desk so they can verify your identity and help you regain control of the account.