Alpha Authentication
Magic link authentication for the client portal — no passwords required
Portal Authentication
The client portal uses magic link authentication. Clients do not need to create an account or remember a password. They simply enter their email and click a link to log in.
Magic Link Flow
- The client navigates to the portal URL
- They enter their email address
- The system sends a one-time magic link to that email
- The client clicks the link in their inbox
- A session is established and the client is redirected to the dashboard
graph LR
A[Enter Email] --> B[Receive Magic Link]
B --> C[Click Link]
C --> D[Session Created]
D --> E[Portal Dashboard]Security
- One-time use — each magic link can only be used once
- Expiration — magic links expire after a limited time window
- Email verification — the link implicitly verifies the client owns the email address
- Session duration — once authenticated, the session persists so clients do not need to re-authenticate on every page load
No Password Required
Magic links eliminate password-related friction:
- No password creation or complexity requirements
- No forgotten password recovery flows
- No credential storage risks on the client side
The client only needs access to their email inbox to authenticate.