Skip to main content

Overview

AutoLog uses a secure, cookie-based authentication system to manage user sessions. This guide covers login, session management, password reset, and account updates.

Logging In

1

Navigate to Login Page

Open AutoLog in your browser. If you’re not authenticated, you’ll be redirected to the login page automatically.
2

Enter Credentials

Provide your username and password in the login form.
If your organization uses two-factor authentication, you’ll also need to enter the verification code sent to your email or authenticator app.
3

Submit and Redirect

Click the login button. Upon successful authentication, you’ll be redirected to the dashboard with a valid session cookie.

Session Management

AutoLog maintains your session using HTTP-only cookies for security. Your session will persist across browser tabs and page refreshes.

Session Verification

The system continuously verifies your session status. If your session expires or becomes invalid, you’ll be automatically redirected to the login page.
The /auth/me endpoint checks your current authentication status and returns your user profile information.

Automatic Logout

Sessions may expire due to:
  • Inactivity timeout
  • Manual logout
  • Server-side session invalidation
  • Security policy enforcement

Logging Out

To end your session securely:
  1. Click on your user profile or settings menu
  2. Select “Logout” or “Sign Out”
  3. The system will invalidate your session and redirect you to the login page
Always log out when using shared or public computers to protect your account.

Password Reset

If you forget your password, you can reset it using the password recovery flow:
1

Request Reset Link

On the login page, click “Forgot Password” and enter your email address or username.
2

Check Your Email

You’ll receive an email with a secure password reset link containing a one-time token.
3

Create New Password

Click the link in the email and enter your new password twice to confirm.
4

Login with New Password

After successfully resetting your password, return to the login page and sign in with your new credentials.
Password reset tokens expire after a limited time for security. If your token expires, request a new one.

Managing Your Account

Viewing Your Profile

Your user profile includes:
  • Full name
  • Email address
  • Username
  • Role and permissions
  • Job position (puesto)
  • Assigned city/location
  • Supervisor information

Updating Account Information

To update your account details:
1

Navigate to Account Settings

Access your account settings from the user menu in the top navigation bar.
2

Edit Information

Update the fields you wish to change, such as:
  • Name
  • Email
  • Phone number
  • Other personal information
Username and role changes typically require administrator approval. Contact your system administrator if you need to modify these fields.
3

Save Changes

Click “Save” or “Update” to persist your changes. You’ll see a confirmation message when the update succeeds.

User Roles and Permissions

AutoLog implements role-based access control (RBAC). Your role determines which features and data you can access:
  • Admin: Full system access, user management, configuration
  • Supervisor: Team oversight, approval workflows, reporting
  • Employee: Standard access for vehicle operations and reservations
  • Custom Roles: Organizations may define additional roles with specific permissions
If you need access to a feature that appears locked or unavailable, contact your supervisor or system administrator to request the appropriate permissions.

Security Best Practices

  1. Use Strong Passwords: Combine uppercase, lowercase, numbers, and special characters
  2. Don’t Share Credentials: Each user should have their own unique account
  3. Log Out on Shared Devices: Always sign out when using public or shared computers
  4. Report Suspicious Activity: Contact your IT department immediately if you notice unauthorized access
  5. Keep Email Secure: Password reset links are sent to your registered email address

Troubleshooting

Cannot Log In

  • Verify your username and password are correct
  • Check if your account is active (contact administrator if locked)
  • Clear browser cookies and cache, then try again
  • Ensure you’re using a supported browser

Session Keeps Expiring

  • Check your browser cookie settings
  • Disable browser extensions that might block cookies
  • Contact IT if the issue persists across different browsers

Password Reset Email Not Received

  • Check your spam/junk folder
  • Verify the email address on file is correct
  • Wait a few minutes (delivery may be delayed)
  • Contact your administrator to manually reset your password

API Reference

For developers integrating with AutoLog’s authentication system:
  • POST /api/auth/login: Authenticate user (src/services/AuthServices.jsx:6)
  • GET /api/auth/me: Get current user session (src/services/AuthServices.jsx:30)
  • POST /api/auth/logout: End user session (src/services/AuthServices.jsx:48)
  • POST /api/auth/reset-password: Reset password with token (src/services/AuthServices.jsx:225)
All authentication endpoints use secure HTTP-only cookies and include CORS credentials.

Build docs developers (and LLMs) love

Get started for freeTalk to us