Skip to main content
Your account settings control personal information visible to teammates, your local preferences, active login sessions, and multi-factor authentication (MFA). These settings apply only to your own account — they do not affect other members of the workspace. Access them from the user menu in the top-right corner: Account settings, or navigate directly to Settings → Account.

Profile

The Profile section lets you update the information Causeloop shows about you.
FieldDescription
Display nameYour name as shown in the member roster, comments, and audit log entries. 1–200 characters.
Avatar URLURL to your profile picture. Max 2,048 characters.
TimezoneYour personal IANA timezone (e.g. America/Los_Angeles). Overrides the workspace default for digest schedules and timestamps shown to you.
LocaleYour BCP 47 locale code (e.g. en-US) for date and number formatting.
Click Save profile to apply changes. The UI sends PATCH /v1/users/me with the updated fields. 
curl -X PATCH "https://api.causeloop.ai/v1/users/me" \
  -H "Authorization: Bearer $TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "Alice Chen-Lopez",
    "timezone": "America/Los_Angeles",
    "locale": "en-US"
  }'
Your email address is managed through Clerk (the identity provider). To change your primary email, use the email field in your Clerk account settings. Causeloop reflects the update on your next sign-in.

Active sessions

The Sessions section lists every device and browser where you are currently signed in. Each session entry shows:
  • Device and browser (from the user-agent)
  • IP address of the session
  • Last active time
  • Whether it is the current session (the one you are using right now)

Revoke a session

Click Revoke next to any session to sign it out immediately. That device will need to sign in again. You cannot revoke your current session this way — to end the current session, use Sign out instead.
Revoking a session does not revoke any API tokens associated with your account. To invalidate tokens, go to API Keys.

Multi-factor authentication (MFA)

MFA adds a second layer of verification at sign-in. Causeloop supports TOTP authenticator apps (such as Authy, Google Authenticator, or 1Password) and SMS as factor types.

Enroll a TOTP authenticator

1

Click + Add authenticator

In the Multi-factor authentication section, click Add authenticator.
2

Name the factor

Enter a label so you can identify this factor later (e.g. Authy — work phone).
3

Scan the QR code

Open your authenticator app and scan the QR code shown, or enter the setup key manually.
4

Enter the verification code

Type the 6-digit code from your authenticator app and click Verify. Causeloop confirms the code matches before activating the factor.
5

Save your recovery codes

After successful enrollment, Causeloop displays one-time recovery codes. Store these in a safe place — they are the only way to recover access if you lose your authenticator device.

Enroll an SMS factor

1

Click + Add phone number

Enter your mobile number in international format (e.g. +14155552671).
2

Verify the number

Causeloop sends a 6-digit code by SMS. Enter it in the verification field to complete enrollment.

Use MFA at sign-in

After enrolling, Causeloop prompts for a second factor during the sign-in flow. Select the factor type, enter the code, and you are signed in.

Recovery codes

If you cannot access your enrolled factor, use a recovery code on the MFA challenge screen. Each code can be used only once. To regenerate recovery codes:
1

Click Regenerate recovery codes

In the MFA section, click Regenerate recovery codes. A confirmation prompt appears.
2

Confirm

The old codes are immediately invalidated. Copy and store the new codes.

Remove a factor

Click Remove next to a factor. If MFA is required by your workspace’s security policy, you must add a replacement factor before removing the existing one.

API endpoints

MethodPathDescription
GET/v1/users/meRetrieve your profile
PATCH/v1/users/meUpdate your profile
GET/v1/sessionsList your active sessions
DELETE/v1/sessions/{id}Revoke a session
GET/v1/mfa/factorsList enrolled MFA factors
POST/v1/mfa/factorsEnroll a new factor (TOTP or SMS)
POST/v1/mfa/factors/{id}/verifyVerify factor enrollment with OTP
DELETE/v1/mfa/factors/{id}Remove an enrolled factor
POST/v1/mfa/challengeCreate an MFA challenge
POST/v1/mfa/challenge/{id}/verifyVerify an MFA challenge
POST/v1/mfa/recovery/verifySign in with a recovery code
POST/v1/mfa/recovery/regenerateRegenerate recovery codes
For the full authentication reference including SSO and SCIM, see API Reference → Authentication.