Authentication
- JWT (JSON Web Token) encrypted sessions. Your login session is cryptographically signed and cannot be tampered with.
- Sessions expire after a period of inactivity, requiring you to log in again.
- All communication between your browser and Stashlify servers is encrypted via HTTPS/TLS.
- Password requirements enforce minimum complexity standards.
Best practices
- Use a strong, unique password that you do not reuse across other services.
- Log out when using shared or public computers.
- Keep your contact information up to date for account recovery.
- Review the activity log periodically for any unrecognized login events.