WealthMgr Docs

WealthMgr supports multiple authentication methods. You can use passkeys (the default), a password, or two-factor authentication (2FA). All security settings live in Settings.

Passkeys

Passkeys are the recommended authentication method. They use your device’s biometric sensor (Face ID, fingerprint) or a hardware security key to authenticate — no password to remember or leak.

Adding a passkey

  1. Go to Settings in the sidebar.
  2. Scroll to the Passkeys section.
  3. Click Add passkey and enter a name (e.g. "MacBook Touch ID" or "YubiKey 5").
  4. Follow the browser prompt to register the passkey on your device.

You can add multiple passkeys — one per device. Each passkey is listed with its name and creation date.

Hardware security keys

Hardware security keys (YubiKey, Google Titan, etc.) work as passkeys when they support FIDO2. Plug in the key, follow the browser prompt, and the key is registered like any other passkey.

Deleting a passkey

Click the delete icon on any passkey row to remove it. You must have at least one remaining authentication method (another passkey or a password) before removing a passkey.

Warning

If you delete all passkeys and have no password set, you will be locked out of your account. Always keep at least one authentication method active.

Password

If you registered with a password, or want to add one as a backup:

Changing your password

  1. Go to Settings.
  2. Scroll to the Password section.
  3. Enter your current password, new password, and confirmation.
  4. Click Change password.

Recovering account access

If you lose access to your passkeys and forget your password, use the recovery flow at the sign-in page. You will receive a one-time recovery link by email.

Two-factor authentication (2FA)

2FA adds a TOTP (time-based one-time password) requirement on top of your existing authentication. Use any authenticator app (Google Authenticator, Authy, 1Password, Bitwarden, etc.).

Enabling 2FA

  1. Go to Settings.
  2. Scroll to the Two-factor authentication section.
  3. Click Enable 2FA.
  4. Scan the QR code with your authenticator app.
  5. Enter the 6-digit code to verify.
  6. Save the backup codes in a safe place.

Backup codes

When you enable 2FA, WealthMgr generates a set of single-use backup codes. Store them somewhere safe (printed, in a password manager, etc.). If you lose access to your authenticator app, use a backup code to sign in and then re-enrol 2FA.

Warning

Backup codes are shown once. If you lose them and lose access to your authenticator app, you will need to use the email recovery flow to regain access.

Disabling 2FA

Go to Settings → Two-factor authentication and click Disable 2FA. You will be prompted to confirm with your current TOTP code.

Email verification

If you registered with an email address, you may be prompted to verify it. Go to Settings and click Send verification email. Check your inbox and click the link.