IONFLOW uses enterprise-grade authentication to protect your workflows and data. Access your account securely through email/password login or Single Sign-On (SSO) using your organization’s identity provider.
IONFLOW uses industry-standard encryption to protect your credentials and session data. All authentication happens over secure HTTPS connections.
Security is paramount in IONFLOW because the platform manages connections to your critical business applications—email services, CRM systems, databases, and cloud storage—while automating processes involving sensitive information like customer data, financial records, and operational metrics.
Every access to IONFLOW is authenticated and logged for audit purposes. This ensures that only authorized users can create boards, view execution history, or manage integrations. Whether you’re using standard email/password login or Single Sign-On (SSO) through your organization’s Keycloak identity provider, IONFLOW applies industry-standard security practices to keep your automations safe.
This section covers how to access your account, manage your credentials, understand session management, and troubleshoot common authentication issues.
This documentation is designed for:
How to sign in to IONFLOW
IONFLOW offers two primary methods to access your account:
Standard login with your registered email address and secure password.
Read Guide →Use your company's Keycloak identity provider to log in with one click.
Read Guide →When SSO is enabled, IONFLOW automatically redirects you to your identity provider.
Read Guide →Open your browser and go to the IONFLOW login page at /session/login
Type your registered email address in the Email field
Type your password in the Password field
Passwords are case-sensitive and must meet security requirements
Check the Remember me box if you’re using a trusted device
This keeps you logged in for longer periods (not recommended for shared computers)
Click LOGIN NOW button to access your workspace
IONFLOW validates your credentials and redirects you to the Dashboard
IONFLOW automatically checks if your email is registered with SSO before logging you in. If SSO is configured for your organization, you’ll be redirected to your identity provider automatically.
Navigate to /session/login in your browser
Click the Login With SSO button below the standard login form
You’ll be redirected to your organization’s Keycloak identity provider
Enter your company credentials as usual (email, password, 2FA if enabled)
After successful authentication, you’re redirected to /session/sso/callback
IONFLOW creates your session and takes you to the Dashboard
Keep your account secure
Your password is the first line of defense for your account. IONFLOW enforces strong password policies to protect your data.
When creating or changing your password, it must meet these security requirements:
If you can’t remember your password:
On the login page, click Forgot Password? link below the password field
Provide the email address associated with your account
You’ll receive a password reset link (valid for 1 hour)
Check your spam/junk folder if you don’t see it within 5 minutes
Click the reset link and create a new password following the requirements
Return to the login page and sign in with your new credentials
Password reset links expire after 1 hour for security. If your link expires, request a new one from the login page.
Additional protection layers
Status: Coming in Q1 2026
Two-Factor Authentication (2FA) adds an extra layer of security beyond your password. Even if someone obtains your password, they cannot access your account without the second authentication factor—typically a temporary code from your phone or authenticator app.
When 2FA is released, you’ll be able to:
Want to be notified when 2FA launches? Contact support to join our early access program and get priority beta testing access.
Single Sign-On allows you to use your organization’s central identity provider (Keycloak) to access IONFLOW without managing a separate password.
Use the same credentials for IONFLOW and all your company applications.
Read Guide →Centralized authentication with your organization's security policies and 2FA.
Read Guide →Password changes in your identity provider automatically apply to IONFLOW.
Read Guide →New to the organization? Click Register With SSO on the login page to create your account using your company identity provider.
Sessions control how long you stay logged in to IONFLOW and how the system manages your access.
Logout to end your session immediatelyIONFLOW automatically:
Currently, IONFLOW supports one active session per user. If you log in from a second device:
Coming soon: Multi-device session management with the ability to:
What you can access
IONFLOW uses role-based access control (RBAC) to determine what actions you can perform in the platform.
| Role | Access Level | Typical Use Case |
|---|---|---|
| Administrator | Full system access | IT admins managing the IONFLOW instance |
| Tenant User | Company workspace access | Business users creating and managing boards |
| Viewer (Planned) | Read-only access | Stakeholders monitoring automation results |
As a standard tenant user, you can:
✅ Boards: Create, edit, execute, and delete your own boards
✅ Connections: Create and manage connections to external apps
✅ Executions: View execution history for boards you have access to
✅ Data Store: Read and write data to your company’s data store
✅ Webhooks: Create and configure webhook triggers
✅ Profile: Update your personal information and preferences
❌ Cannot: Manage other users, change company settings, or access admin features
Administrators have all tenant permissions plus:
✅ User Management: Add, remove, and manage user accounts
✅ Company Settings: Configure company-wide preferences and integrations
✅ Audit Logs: View system-wide activity and security logs
✅ Billing: Manage subscription and usage monitoring
If you need access to features beyond your current role, contact your company administrator to request a role change.
How IONFLOW protects your data
When you connect external apps to IONFLOW (Gmail, Slack, HubSpot, etc.), the platform securely stores your credentials and API keys.
Secure authorization that never exposes your password. You grant access through the provider's interface.
Read Guide →For apps that don't support OAuth. Store keys securely in encrypted connection configurations.
Read Guide →For maximum security, rotate your credentials periodically:
You can revoke IONFLOW’s access to any app by deleting the connection. This immediately stops all boards using that connection from accessing the external app.
IONFLOW maintains detailed logs of authentication and authorization events for security auditing and compliance.
Authentication Events:
Authorization Events:
Administrators can access audit logs from the admin dashboard:
Admin Dashboard → Audit LogsNote: Regular tenant users cannot access system-wide audit logs but can view their own activity in the Profile → Activity section (coming soon).
Troubleshooting authentication problems
Error message: 'Username or password is incorrect'
Causes:
Solution:
Forgot Password? to reset if unsureLogged out unexpectedly with 'Session expired' message
Causes:
Solution:
Remember me to extend session durationRedirected between IONFLOW and identity provider repeatedly
Causes:
Solution:
Login successful but redirected to blank page or error
Causes:
Solution:
Q: What happens if I lose my phone with 2FA?
A: When 2FA is released (Q1 2026), you’ll receive backup recovery codes during setup. Store these codes securely offline. If you lose your phone, use a recovery code to log in, then disable 2FA and set it up again with a new device. Without recovery codes, contact support for identity verification.
Q: Can I use the same account on multiple devices?
A: Currently, IONFLOW supports one active session at a time. Logging in from a second device will automatically log you out from the first device. Multi-device session management is planned for a future release, allowing you to maintain concurrent sessions across devices.
P: How often should I change my password?
A: We recommend changing your password every 90 days for maximum security. If you use SSO, your identity provider manages password policies. Always change your password immediately if you suspect it has been compromised.
P: Can I skip SSO and use email/password instead?
A: If your organization has mandatory SSO enabled, IONFLOW will automatically redirect you to your identity provider when you enter your email. Check with your administrator if you need direct password access for specific use cases.
P: What happens if I forget which email I used to register?
A: Contact your company administrator—they can look up your account in the user management panel. If you’re an independent user, reach out to IONFLOW support with your name and any other account details you remember.
Now that you understand how to access IONFLOW securely, explore these related topics:
Customize your account settings, update personal information, and configure notifications.
Read Guide →Learn how to navigate your main control panel and monitor your automation activities.
Read Guide →Create your first board in 10 minutes with our hands-on tutorial.
Read Guide →Was this helpful?