Account Settings
Account Settings
The Account Settings page is your self-service area for managing your personal account and security settings.
Use it to:
- update your profile information
- manage your profile photo
- change your password
- manage API tokens, if available
- enable or disable two-factor authentication
- review and sign out other browser sessions
- delete your account, if that feature is enabled
Where to Find It
You can open Account Settings from the profile menu in the authenticated application header.
This page manages your own account.
If staff open a user’s operational profile for support or investigation, that is a different page with a different purpose.
Profile Information
The Profile Information section is used to manage your basic account details.
Depending on your facility configuration, this section may allow you to:
- update your name
- review your email address
- manage your profile photo
Profile Photo
If profile photos are enabled, you can:
- upload a new profile photo
- preview the selected image before saving
- remove the existing photo
Accepted profile photos are JPG or PNG images and are resized automatically.
Email Verification
If your account uses email verification and your email has not yet been verified, the page can show a verification prompt and allow you to send another verification email.
Important Note About Email
In the current profile form, your email address is displayed but not editable from this page.
If you need to update your email address, follow your facility’s supported email update workflow.
Update Password
The Update Password section lets you change your password by entering:
- your current password
- a new password
- password confirmation
Use a strong, unique password to protect your account.
This section is shown only when password updates are enabled for your account.
Two-Factor Authentication
If two-factor authentication is available, the Two Factor Authentication section lets you add an extra layer of account security.
From this section, you can:
- enable two-factor authentication
- scan a QR code with an authenticator app
- enter a confirmation code to finish setup
- view recovery codes
- regenerate recovery codes
- disable two-factor authentication later if needed
Recovery codes should be stored somewhere secure, such as a password manager.
API Tokens
If your role includes access to API token management, the account settings area can also include an API Tokens page.
This area is used to:
- create tokens for approved integrations
- assign token permissions
- review existing tokens
- expire tokens that should no longer be used
- delete tokens that are no longer needed
API tokens should be treated like passwords or service credentials.
Only create them for approved operational workflows, and only grant the minimum permissions required.
Browser Sessions
The Browser Sessions section helps you review other signed-in sessions tied to your account.
You can:
- see recent browser or device sessions
- identify the current device
- log out other browser sessions
This is especially useful if:
- you signed in on a shared device
- you lost access to a device
- you think someone else may have access to your account
Logging out other browser sessions requires you to confirm with your password.
Delete Account
If account deletion is enabled, the Delete Account section allows you to permanently delete your account.
This action is destructive and requires password confirmation.
Before deleting your account, make sure you understand any consequences for:
- access to teams or projects
- historical usage and request records
- saved profile information
If you are unsure, contact your facility staff before proceeding.
Feature Visibility
Not every section appears for every user.
What you see depends on system configuration and enabled account features.
Possible conditional areas include:
- profile photo management
- password updates
- API token management
- two-factor authentication
- account deletion