How to Get Here
- Click Settings (gear icon) in the left sidebar.
- Click the Security tab.
Password Management
Changing Your Password
- In the Security tab, find the Change Password section.
- Enter your current password (to verify it is really you).
- Enter your new password.
- Confirm your new password by typing it again.
- Click Update Password.
Password Requirements
Your new password should be:- At least 8 characters long
- A mix of uppercase and lowercase letters
- Include at least one number
- Include at least one special character (e.g., !, @, #, $)
Tip: Use a password manager like 1Password, Bitwarden, or your browser’s built-in password manager. A strong, unique password for Fanaura means that even if another service you use gets breached, your fan data stays safe.
Active Sessions
The Active Sessions section shows every device and browser currently logged into your Fanaura account. This is your real-time view of who has access right now.What You See for Each Session
| Field | Description |
|---|---|
| Device Name | The browser and operating system (e.g., “Chrome on macOS”, “Safari on iPhone”) |
| Location | Approximate geographic location based on IP address (e.g., “Nashville, TN”) |
| Last Active | When this session was last used (e.g., “2 minutes ago”, “3 days ago”) |
| Current | A badge indicating which session you are using right now |
Revoking Individual Sessions
If you see a session you do not recognize — or a device you no longer use — you can revoke it:- Find the session in the list.
- Click the Revoke button next to it.
- That session is immediately terminated.
- The person (or you on that device) will be logged out and need to sign in again.
- You logged in on a hotel computer and forgot to log out.
- You see a device or location you do not recognize.
- A team member who left should no longer have access through a saved session.
- You lost a phone or laptop.
Revoking All Other Sessions
For a nuclear option:- Click Revoke All Other Sessions.
- Confirm the action.
- Every session except your current one is immediately terminated.
- Anyone else logged into your account is forced to sign in again.
- You suspect your account has been compromised.
- You changed your password and want to force re-authentication everywhere.
- You want a clean slate of sessions.
Important: This does not change your password. If you suspect unauthorized access, change your password first, then revoke all sessions.
Login History
The Login History section shows recent login attempts to your account, including both successful and failed attempts.What You See for Each Entry
| Field | Description |
|---|---|
| Date & Time | When the login attempt occurred |
| Status | Success or Failed |
| IP Address | The IP address of the login attempt |
| Location | Approximate geographic location |
| Device | Browser and operating system used |
What to Look For
- Failed attempts from unknown locations: Multiple failed login attempts from a location you do not recognize could indicate someone trying to guess your password.
- Successful logins you did not make: If you see a successful login from an unfamiliar device or location, your password may be compromised.
- Patterns: Multiple failed attempts followed by a success could mean someone cracked your password.
- Change your password immediately.
- Revoke all other sessions.
- Review your email for any password reset requests you did not initiate.
Session Heartbeat
Fanaura uses a session heartbeat system to keep your sessions fresh and secure:- Active sessions periodically refresh in the background.
- This means you do not get unexpectedly logged out while working.
- Inactive sessions (no activity for an extended period) will eventually expire.
- The heartbeat also updates the “Last Active” timestamp you see in the Active Sessions list.
Security Best Practices
Use a Strong, Unique Password
Your Fanaura password should not be the same as your Instagram, email, or any other service. If one service gets breached, you do not want your fan data exposed too.Check Active Sessions Regularly
Make it a habit to glance at your active sessions once a week. It takes 10 seconds and gives you peace of mind. If you see “Chrome on Windows in Moscow” and you are an artist in Nashville — something is wrong.Revoke Sessions You Do Not Recognize
When in doubt, revoke it. The worst that happens is you have to log in again on that device. The best that happens is you just stopped unauthorized access.Be Careful on Shared Devices
If you log into Fanaura on a shared computer (studio, venue, conference room):- Use a private/incognito browser window.
- Always log out when you are done.
- Check your active sessions afterward to confirm the session ended.
Keep Your Email Secure
Your Fanaura account is tied to your email address. If someone gains access to your email, they could reset your Fanaura password. Protect your email with a strong password and two-factor authentication.Notify Your Team
If you revoke all sessions, let your team members know. They will need to log in again and might be confused if they suddenly lose access without warning.What Happens Next
Security is not a one-time setup — it is an ongoing practice. After configuring your password and reviewing your sessions:- Check back periodically (weekly is a good cadence).
- If you add team members, remind them to use strong passwords too.
- If you ever suspect unauthorized access, act immediately: change password, revoke sessions, and review login history.