Authentication
Sign-up, log-in, email verification, and changing your email or password — plus what to do if you're locked out.
Every Norcube product sits behind one account at app.norcube.com. Authentication is email + password; there are no third-party sign-in providers today.
Sign up
app.norcube.com/signup — "Create your Norcube account":
- Name, Email, Password ("Must be at least 8 characters."), and agreement to the Terms and Privacy Policy.
- Create free account.
Signing up creates your account and a default organization, then drops you straight into the dashboard — no verification wall.
Email verification
After sign-up, a 6-digit code is emailed to you. Verification is a soft gate: you can use the products immediately, and the dashboard shows a banner until you confirm. The code expires after 15 minutes with a limited number of attempts; resending has a short cooldown (about a minute) — wait it out rather than hammering the button.
Log in
app.norcube.com/login — "Sign in to Norcube" — email + password. The dashboard manages session lifetime transparently (short-lived access tokens refreshed against a 7-day session — details in Tokens); you won't see expiry while actively using the app.
Change your email
Account → the Email address card. A two-step flow:
- Enter your current password and the new email, then Send confirmation code.
- A 6-digit code goes to the new address — "Check the inbox (and spam) of that address, then enter the code below within 15 minutes." Confirm it.
On success the account switches to the new address (which is thereby also verified); future log-ins use it.
Change your password
Account → Security → Change password: current password, new password (min 8 characters, must differ from the old one), confirm.
One behaviour to know, stated on the page itself: "Other sessions you've signed in to stay valid after a password change — sign out from those devices separately if you want to invalidate them." A password change is not a remote-logout button.
Lost password
There is no self-service password reset today — the login page has
no "forgot password" flow. If you've lost your password, contact
support ([email protected] for account matters, or via the
dashboard from a colleague's account); recovery involves manual
identity verification.
Until then, treat your password manager as the recovery path — and note that multi-factor authentication is not yet available either, so account security rests on password strength and control of your inbox.
Related
- Tokens — the JWT model behind sessions and API access.
- CLI — how
nrc loginauthenticates through the browser. - Account deletion.