Account Recovery Flow

Restore access when a customer loses their license key or hardware fingerprint changes.

1. Initiate Recovery

Customer visits /recover and enters their original email. Nimbus sends a time-limited recovery link (15-minute TTL).

2. Verify Identity

Clicking the link opens a signed session. The customer provides their SellAuth order ID or last 4 digits of the payment card. Server validates against the purchase record.

3. Reissue License

On successful verification, KeyAuth revokes the old key and issues a new one. The loader's offline grace cache is invalidated via a forced re-auth flag.

4. Hardware Rebind

If the fingerprint changed (new motherboard, OS reinstall), the new HWID is bound to the replacement key. Old HWID is blacklisted for 30 days to prevent abuse.

5. Confirmation

Customer receives the new key via email and in-dashboard. The loader auto-fetches the updated key on next launch if the old one fails auth.

Rate limit: 3 recovery attempts per email per 24 hours. Abuse triggers a manual review flag in the admin dashboard.

← License Binding Auto-Update →