Passwords

Stareceipt supports password-based sign-in. Use a unique password that is not shared with other services, and store it in a password manager where possible.

Resetting a forgotten password

Open Forgot password.
Enter your registered email address.
Request and enter the verification code.
Choose a new password.

If the verification code does not arrive within a few minutes, check your spam folder and try requesting a new code.

Two-factor verification during sign-in

Some accounts are protected by a second-factor authenticator code. When this is enabled for the account, sign-in pauses after the password step and asks for a time-based verification code from an authenticator app.

What is confirmed in the shared codebase today:

password sign-in can require a second-factor step,
the second factor is a time-based authenticator code,
invalid codes and repeated attempts are rate-limited.

Availability of self-service setup, disable flows, backup-code export, and account-security screens depends on your deployment. If your current client does not expose these controls, contact support.

Biometric unlock

Biometric unlock is not documented as a universal feature across the current shared clients. If your deployed mobile build exposes Face ID, Touch ID, or fingerprint unlock, follow that build's in-app instructions.

Device and session controls

Current shared Web and mobile clients do not document one universal Active Sessions or Revoke Session page. Session-management controls may differ by client build and deployment.

If you suspect unauthorized access

Reset your password through the verification-code flow.
Sign back in and review the recent account activity your client exposes.
Contact support at support@stareceipt.com with your account email and a brief description of the incident.