Authentication

Private, invite-gated access to the lab

Members can sign in locally, with a passkey, or through a linked provider. Every new account still starts with a single-use invite.

Closed beta
1. Redeem invite

The login page stays public, but every new account still starts from a single-use invite link.

2. Choose secure access

Use a local username and long password, a phishing-resistant passkey, or an available identity provider.

3. Add recovery and 2FA

Add a verified recovery email when mail is configured and protect local credentials with an authenticator app.

Member sign-in

Existing members can use local credentials, a passkey, or a linked provider. New accounts require an invite link.

Identity verification

Every account-creation method is bound to the single-use invite. GitHub and ORCID are optional when a passkey or local credentials are available.

Login-gatedSingle-use invitesGitHubORCID