Open Collective Docs
Open Collective Docs
Welcome
About
Introduction
Terminology
Company
Pricing
Community Guidelines
Values
Team
The Open Collective Way
Investors
Contributing
Product
Features
Roadmap
Comparison
User Profile
Currencies
Log-in System
Privacy Policy
Moderation
Collectives
FAQ
Creating a Collective
Quick Start Guide
Customize Collective
Core Contributors & Admins
Tiers & Goals
Add Fiscal Host
Change Fiscal Host
Open Source Collectives
Transparent Budget
Expense Policy
Approving Expenses
Updates & Comms
Conversations
Events
Funding Options
Data Export
Buttons & Banners
Integrations
Zero Collective Balance
Closing a Collective
Connected Collectives
Setting up GitHub Sponsors
Financial Contributors
FAQ
Payments
Website Badge
Collective to Collective
Organizations
Expenses & Getting Paid
FAQ
Submitting Expenses
Expense Comments
Edit or Download an Expense
Tax Information
Fiscal Hosts
FAQ
Becoming a Fiscal Host
Create a Fiscal Host
Fiscal Host Settings
Payouts
Fiscal Host Dashboard
Bank Transfers
Add Funds Manually
Refunds
Host Fees
Local Tax Support
Agreement Templates
Open Source Collective
Contributing
Design
Development
Documentation
Translation
Internal
Scope
Welcome Document
Team Retreats
Host Admin Manual
Internal moderation tools
Newsletter
Claiming a pledged collective
Support
Issue Labels
DNS Troubleshooting
Developer Guidelines
Architecture
Testing
Jobs
Queries
Projects
Powered by GitBook

Log-in System

Open Collective works with a no-password system, because our users appreciate not having to remember another password, especially when on mobile.

How it works

You type in your email and the system instantly knows if you're an existing user or a new user.

If you already have an account, we send you an email with a unique link that logs you into Open Collective. You will stay logged in for 30 days on that device.

If you're a new user, you'll be prompted to create an account.

About security

According to Auth0:

Passwordless authentication, by its nature, eliminates the problem of using an unsafe password. This means that one of the biggest user errors is taken out of your login. Not only is passwordless authentication safe to use, it might even be safer than a traditional username + password login.

Not only this mechanism is safe, but it's also covered by our security bounty policy ; we invite security researchers (and pay them) to try to break our system and improve it.

We are currently implementing 2FA (two factors authentication) which will bring an important layer of security on top of that.

Product - Previous
Currencies
Next - Product
Privacy Policy
Last updated 1 month ago
Edit on GitHub
Contents
How it works
About security