--- title: Dashboard authentication description: >- How MapleDeploy dashboard sign-in works, including passwords, social sign-in, passkeys, two-factor authentication, and account recovery. order: 2 lastUpdated: '2026-06-10' type: article author: Ross Hill locale: en_CA keywords: - Canadian hosting - Canadian data sovereignty - Coolify managed hosting - PIPEDA-ready hosting - git push deploy - managed databases Canada site_name: MapleDeploy slogan: Powerful hosting on Canadian soil organization_url: 'https://mapledeploy.ca/' logo: 'https://mapledeploy.ca//api/logo/lockup' creator: MapleDeploy publisher: MapleDeploy founding_date: '2026-01-13' email: hello@mapledeploy.ca geo_region: CA-ON geo_placename: Toronto address_country: CA area_served: Canada application_category: DeveloperApplication app_url: 'https://app.mapledeploy.ca' llms_txt: 'https://mapledeploy.ca/llms.txt' offers: >- Starter $45/mo, Pro $95/mo, Ultra $195/mo, Ultra 32 $395/mo, Ultra 64 $695/mo CAD in_language: en-CA canonical_url: 'https://mapledeploy.ca/docs/authentication' --- This guide covers authentication for the MapleDeploy dashboard at `app.mapledeploy.ca`. Coolify sign-in, Git provider sign-in inside Coolify, and client-to-server authentication for your own applications are separate systems and are out of scope here. ## Sign-in methods MapleDeploy supports several ways to sign in to the dashboard. Your account can have more than one sign-in method. ### Email and password You can sign in with the email address and password on your MapleDeploy account. When you create an account with email and password, MapleDeploy creates the account first and then sends you back to the sign-in page. You are not signed in automatically after signup. You can change your password from **Settings** → **Account** → **Password**. If your account was created through a social provider and does not yet have a password, this same section lets you set one. ### Social sign-in The sign-in and signup pages show social sign-in buttons only for providers currently enabled on MapleDeploy. If a provider is not shown, it is not available for dashboard sign-in. Social sign-in is tied to the email address on your MapleDeploy account: - If you already have a password account, sign in with your password first, then connect a social provider from **Settings** → **Account** → **Connected accounts**. - MapleDeploy does not automatically link a social provider just because it reports the same email address. - A connected provider can be disconnected from **Settings** → **Account** → **Connected accounts** as long as your account still has another way to sign in. ### Passkeys Passkeys let you sign in without typing your password. They work with Touch ID, Face ID, Windows Hello, browser-synced passkeys, and compatible security keys. To add a passkey: 1. Sign in to the dashboard. 2. Open **Settings** → **Account** → **Passkeys**. 3. Enter a name for the passkey. 4. Confirm the action. Password accounts use the current password and, when enabled, the current authenticator code. Accounts without a password use a recent social sign-in. 5. Complete the browser or device passkey prompt. After a passkey is added, you can use **Sign in with a passkey** on the sign-in page. If your account also has two-factor authentication enabled, a passkey sign-in completes sign-in on its own. Password sign-in still requires your authenticator code. ### Two-factor authentication Two-factor authentication adds an authenticator app as a second step after password sign-in. To enable it: 1. Sign in to the dashboard. 2. Open **Settings** → **Account** → **Two-factor authentication**. 3. Enter your current password. 4. Scan the QR code in an authenticator app, or enter the manual key. 5. Save the recovery codes shown during setup. 6. Enter the code from your authenticator app to finish setup. Recovery codes are shown only during setup or regeneration. Each code works once. Store them somewhere you can reach if you lose your authenticator device. When two-factor authentication is enabled: - Password sign-in asks for an authenticator code after the password is accepted. - You can use a recovery code instead of an authenticator code. - Regenerating recovery codes replaces the old set. Old codes stop working. - Regenerating recovery codes or disabling two-factor authentication requires your current password and, when two-factor authentication is enabled, your current authenticator code. ## Common workflows ### Create an account 1. Go to [app.mapledeploy.ca/signup](https://app.mapledeploy.ca/signup). 2. To create an account with email and password, enter your name, email, password, and optional organization name. 3. Accept the terms. 4. Submit the form. 5. Return to the sign-in page and sign in with your new account. If a social sign-in button is shown, you can use it to create or sign in to an account with that provider instead. If you are accepting an organization invitation, use the email address from the invitation. Social sign-in buttons are hidden during invited signup. The invitation flow returns you to the invitation after signup or sign-in. ### Sign in Use one of the sign-in methods available on your account: - Enter your email and password. - Click **Sign in with a passkey** if you have registered a passkey. - Use a social sign-in button if the provider is shown and connected to your account. If password sign-in asks for a second factor, enter your authenticator code or use a saved recovery code. ### Stay signed in The dashboard keeps you signed in securely in your browser. You do not need to do anything manually to stay signed in. If your session expires while you are using the dashboard, MapleDeploy tries to keep your session active. If you need to sign in again, you are sent back to the sign-in page and then returned to the page you were using when possible. ### Sign out Use **Sign out** from the dashboard menu. This ends the current dashboard session in the browser. If you signed in on another browser or device, sign out there too. Changing your password revokes other active sessions, and resetting your password revokes existing sessions. ### Change your password 1. Open **Settings** → **Account** → **Password**. 2. Enter your current password. 3. Enter and confirm the new password. 4. Save the change. If your account does not currently have a password, the dashboard shows **Set a password** instead. ### Change your email address 1. Open **Settings** → **Account** → **Email**. 2. Enter the new email address and your current password. 3. Check the new email inbox for the verification email. 4. Open the verification link while signed in to the dashboard. Your email address is not changed until the verification link is confirmed. ### Connect or disconnect a social provider Open **Settings** → **Account** → **Connected accounts**. To connect a provider, choose the provider and complete the provider sign-in flow. The provider email must match your MapleDeploy account email. To disconnect a provider, choose **Disconnect** for that provider and confirm the action. Connecting or disconnecting a provider requires extra confirmation. Password accounts use the current password and, when enabled, the current authenticator code. Accounts without a password use a recent social sign-in. MapleDeploy blocks disconnecting the only remaining sign-in method. ### Add or remove a passkey Open **Settings** → **Account** → **Passkeys**. To add a passkey, give it a recognizable name, confirm the action, and complete the device prompt. To remove a passkey, choose **Revoke** for that passkey and confirm the action. Adding a passkey requires extra confirmation. Removing a passkey requires your current password and, when enabled, your current authenticator code. ## Account recovery ### Reset a forgotten password 1. Go to [app.mapledeploy.ca/forgot-password](https://app.mapledeploy.ca/forgot-password). 2. Enter your account email address. 3. Check your inbox for a password reset email. 4. Open the reset link. 5. Enter and confirm your new password. 6. Return to the sign-in page and sign in with the new password. For privacy, the forgot password page shows the same confirmation whether or not the email address belongs to an account. Password reset links expire after 1 hour. Resetting your password signs out existing dashboard sessions. ### Lost authenticator app If you still have a recovery code, use **Use a recovery code** on the two-factor challenge screen. If you are already signed in on another browser or device and still have your authenticator app, regenerate recovery codes from **Settings** → **Account** → **Two-factor authentication**, then store the new codes. If you lost both your authenticator app and your recovery codes, or you are signed in but cannot provide the current authenticator code required to regenerate recovery codes, contact [hello@mapledeploy.ca](mailto:hello@mapledeploy.ca). We will verify account ownership before resetting two-factor authentication. ### Lost passkey If you still have another sign-in method, sign in with that method and revoke the lost passkey from **Settings** → **Account** → **Passkeys**. If the lost passkey was your only sign-in method, try password reset or a connected social provider. If neither is available, contact [hello@mapledeploy.ca](mailto:hello@mapledeploy.ca). ### Lost access to your email inbox If you are still signed in, change your email from **Settings** → **Account** → **Email** and confirm the new address. If you are signed out and cannot access your email inbox, contact [hello@mapledeploy.ca](mailto:hello@mapledeploy.ca). We will need to verify account ownership before changing the email address. ## Security notes - MapleDeploy dashboard authentication is separate from Coolify authentication. - Dashboard sessions are managed securely in your browser. - Password reset emails are sent only to the account email address. - Recovery codes are one-time-use. - Sensitive account changes require confirmation. Password accounts use the current password and, when enabled, the current authenticator code. Accounts without a password may use a recent social sign-in for supported actions.