Authentication & Account Management
Sign in with email/password, Google, GitHub, or Apple. Email verification, password reset, and SRP-6a authentication keep your credentials safe — even on shared networks.
Sign-in methods
| Method | Notes |
|---|---|
| Email + password | Uses SRP-6a — your password never leaves the device. |
| Google OAuth | External browser window, no nodeIntegration. |
| GitHub OAuth | Same flow; tokens stored in the OS keychain. |
| Apple ID | Sign in with Apple, recommended for App Store builds. |
Email verification
After registration we send a verification email containing a vortexhq://verify-email/{token} link. Clicking it from any browser opens the app and confirms the address. Unverified accounts can use the app locally but cannot receive cloud-shared resources.
Password reset
- Click Forgot password on the login screen.
- Enter your email; you receive a
vortexhq://reset-password/{token}link. - Click it; the in-app reset form opens (no browser involvement).
- Set a new password — the SRP verifier is regenerated client-side and uploaded.
Account settings
- Update display name, email, password.
- Enable two-factor authentication (TOTP, coming soon).
- Manage active sessions — revoke other devices.
- Delete account — wipes cloud data after 30-day grace period.
Logout behaviour
Logging out clears the Sanctum token from the OS keychain and disconnects the WebSocket. Local encrypted data is left in place under ~/.vortex/users/{userId}/ so you can sign back in without losing work — or sign in as a different user and switch context.