If you're logged in
- Go to /dashboard/settings.php.
- Find the Change Password card on the right.
- Enter your current password, then your new password (twice).
- Click Update Password. You stay logged in.
Minimum length is 8 characters. We recommend a password manager.
If you forgot your password
- Go to /forgot-password.php.
- Enter the email on your account.
- Check your inbox for a reset link — it expires in 1 hour.
- Click the link, set a new password, and you'll be logged in.
What if I don't get the reset email?
- Check your spam folder. Mailgun-delivered email occasionally lands there.
- Make sure you used the exact email on your account — we don't tell you whether an email matches (anti-enumeration), but reset emails only fire for real accounts.
- Wait 5 minutes — large mail providers (Gmail, Outlook) sometimes hold transactional email for spam scanning.
- Still nothing? Email support from the same address you signed up with and we'll help.
Security best practices
- Use a password manager. 1Password, Bitwarden, KeePass — pick one and use it everywhere. We never see your plaintext password (it's hashed with bcrypt).
- Don't reuse passwords. If a different service is breached, attackers will try the same email/password combo here.
- Watch the audit log. Your last login time is shown on the dashboard. If it's a time you weren't logged in, change your password and tell us.
Two-factor authentication
Coming. Until then, a strong unique password + a vigilant email account is your best protection.
Compromised password?
Change it immediately, then check your Sites page for any unfamiliar sites, and the affiliate dashboard for any payout settings changes. If you spot anything off, email support and we can lock the account while we investigate.