At Macha, we believe that security starts at the first point of contact: user authentication. We’ve designed our login process to protect your data without compromising on usability.
Email OTP Authentication (No Passwords Stored)
Macha uses Email-based One-Time Passwords (OTP) for user authentication. This means:
-
No passwords are stored or required.
-
When a user attempts to log in, a unique OTP is sent to their registered email address.
-
This OTP must be entered to complete the login, ensuring secure access each time.
By eliminating passwords, we reduce the risk of password-related breaches and enhance user convenience.
⏳ Secure Session Handling
We automatically log users out after a period of inactivity. This ensures:
-
Unauthorized users can’t access an account left open.
-
Sessions remain secure even on shared or unattended devices.
🏢 Domain Claiming for Organizations
Organizations using Macha can claim their domain to enforce tighter access control:
-
Only users with email addresses from the claimed domain can join that organization’s workspace.
-
This adds a powerful layer of organizational security, especially for enterprise teams.
🔍 Summary
| Feature | Description |
|---|---|
| Email OTP Authentication | Secure, passwordless login using one-time codes |
| Auto Session Expiry | Users are logged out after inactivity to prevent unauthorized access |
| Domain Claiming | Restricts access to verified email domains for organizational workspaces |
📬 Need Help?
If you have trouble logging in or need assistance setting up domain claiming, feel free to contact our support team.