Most classical hosting works like Twitter: You have a personal account and additional accounts for your corporate tweets. fortrabbit is more like Facebook: Your Account represents you as an individual. You add company pages to represent your businesses.
┌─────────────────────────────────────────────────────────┐ │ │ │ Company │ │ │ └─────▲─────────┬─────────────┬────────────┬────────▲─────┘ │ │ Owner owns owns owns Admin │ │ ┌─────┴──────┐ │ │ │ ┌──────┴─────┐ │ │ │ │ │ Account1 ├──┼───access │ access──┼─┤ Account3 │ │ │ │ │ │ │ └─────┬──────┘ │ │ │ │ │ └──────┬─────┘ │ │ │ │ access │ │ │ │ │ access │ │ │ │ ┌─────▼─────────▼─┐ ┌───▼────▼────▼───┐ ┌─▼────────▼─────┐ │ │ │ │ │ │ │ App1 │ │ App2 │ │ App3 │ │ │ │ │ │ │ └─────────────────┘ └─────────────────┘ └────────────────┘
|Account 😀||Company 🏢||App|
|represents a person||represents a company||represents a web application or website|
|is actively managing||is managed by Accounts||is managed by Accounts|
Creating an Account¶
Creating an Account with fortrabbit is free, of course. If you haven't already: just head over to our signup page. You will be asked for your e-mail & you will choose a safe password.
Changing the Account e-mail address¶
Within the Dashboard > Your Account > e-mail address. Follow the procedure. A security notice will be send to your old e-mail address, then.
Changing the Account password¶
Within the Dashboard > Your Account > password. Here you have to enter your old password to setup a new password. Please mind that this will also change your logins (SSH/SFTP/Git) when you use password (not SSH key) as access method.
Resetting the Account password¶
With the Dashboard login screen, you'll see a little link "Forgot password?". This will bring you to our password reset form (direct link) where you can recover your Account. In that form you will enter the e-mail address associated with your fortrabbit Account. The system will then send you a recovery link to your e-mail address. With that you can set a new password to login in again. Please mind that billing e-mail address and Account e-mail address might differ.
Setting up 2FA¶
We recommend to use two-factor-authentication with your fortrabbit Account to add an additional layer of security. You can setup and disable 2FA from your Account in the Dashboard:
- Dashboard > Your Account > 2FA
During the guided setup you will enable your second device to generate OneTimePasswords for fortrabbit.
Using 2FA with your Account¶
Once 2FA is enabled with your fortrabbit Account, you'll need to enter the extra TOTP code when logging or performing critical actions requiring a SUDO.
Recovering 2FA when second device is lost¶
During the 2FA setup the Dashboard showed you some recovery codes. These codes are always valid for your Account. Please store those in a save place you still remember later on. Use those codes to login and disable (an re-enable) 2FA in case of a lost device.
When you have also lost your 2FA recovery codes: Contact us and ask us to disable 2FA for you manually. Please provide proof that we can safely identify you, see below.
Managing SSH keys¶
Also in the Dashboard under your Account, you can add your own SSH keys. Also see the access methods article for more.
Setting the SUDO mode¶
For many actions you are performing within the Dashboard you'll need to enter your Account password. The SUDO mode makes this a little less painless, while keeping it still secure. With the SUDO settings you can define how often you'll be asked for your Account password within a session.
Setting the session time¶
With the session time setting you can define how long you like to stay logged in within the Dashboard.
With the notification settings you can enable/disable certain e-mails you receive from our friendly mail bot, toggle the newsletter and set to receive status messages.
Setting a name¶
Please be so kind and provide your real name. This way, support is more personal and fun.
Configuring your Avatar image¶
There is no setting for this. We'll show your face with your Account, when you have your e-mail registered with Gravatar.
Your team profile¶
Within the Dashboard under your Account, you can view your team profile. The team profile is a limited read only version of your Account. This is how your collaborating coworkers will see your Account.
Setting up Companies¶
Your Account is also a staring point for Companies you own or are member of.
Sharing your Account¶
Please just don't! Your Account is your personal access to fortrabbit. We have powerful collaboration features.
Deleting an Account¶
No longer like fortrabbit? Sorry! To cancel your Account completely:
- Your account
- Cancel Account and follow the instructions.
Please be aware that: The billing cycle is monthly after usage. When you cancel today, you will get one last invoice next month for the usage this month so far. For example: Today is the 7th, so the first seven days of march will be billed after the march is over.
When you have a Company with other Owners, the Company will not be deleted, you will leave the Company. The fortrabbit Account itself is free, you can also delete all Apps and cancel all Company plans so that no future costs will applied. You'll still might get "service" e-mails by us.
Recovering access to an Account¶
You might have completely lost access to your Account. Or someone left the Company who has had an Account forgot to transfer access when offboarding.
When you have access to the mail that has been used¶
When you know the e-mail that has been used for the Account here and you have access to it proceed by resetting the Account password — see above. This way you regain access and set a new password so that only you can login. That will not work when the Account has 2FA enabled, please see above.
When you don't know the e-mail or you don't have access to that mail¶
Sometimes we get contacted by someone claiming to be owner of a business with websites hosted here on fortrabbit. This can be an attempt of social engineering. Therefore we will need to carefully check such requests:
Proof of ownership¶
Tell us details that only you — the legit owner of the business — can know. More is better:
- last two digits of the current credit card in use
- a previous invoice number
- amount of the last invoice
- name of your Apps hosted here
- links to LinkedIn profiles
- details from conversations we have had in support
- a funny commit message you can recall
- a detail or a comment in the code
- names and e-mail addresses of other team members
- tell us the whole story why you don't have access any more
- plus anything else that helps us identifying you as the real owner
Deletion of abandoned Accounts¶
We delete old and neglected Accounts when all of the following attributes are given:
- no login to our Dashboard for a long time
- no access to any Company any more
- no active Apps running
We think that is in the best interest of our users for privacy and security. It's easy to sign up again at any time later. We might not inform the Account about an upcoming auto-delete.