Authentication
Private, invite-gated access to the lab
Members can sign in locally, with a passkey, or through a linked provider. Every new account still starts with a single-use invite.
1. Redeem invite
The login page stays public, but every new account still starts from a single-use invite link.
2. Choose secure access
Use a local username and long password, a phishing-resistant passkey, or an available identity provider.
3. Add recovery and 2FA
Add a verified recovery email when mail is configured and protect local credentials with an authenticator app.
Member sign-in
Existing members can use local credentials, a passkey, or a linked provider. New accounts require an invite link.
Identity verification
Every account-creation method is bound to the single-use invite. GitHub and ORCID are optional when a passkey or local credentials are available.
Login-gatedSingle-use invitesGitHubORCID