Account Access & Login

Access your ShipEdge account by logging in with your username and password. The login system includes security features like automatic login, password reset, and account protection.

Why Use Account Access?

Secure Access

Your account is protected with username and password authentication. Security features help keep your account safe.

Quick Login

Save your username for faster access. Auto-login option remembers your credentials securely.

Password Recovery

Forgot your password? Use the password reset feature to regain access to your account via email.

Account Protection

Security features protect your account from unauthorized access, including login attempt limits and location restrictions.

How to Log In

Navigate to Login Page

Go to login.php or access the ShipEdge login page. The system will check if you’re already logged in.
Enter Username

Type your username in the Username field. If you’ve saved your username before, it may be pre-filled.
Enter Password

Type your password in the Password field. Click the eye icon to show or hide your password as you type.
Choose Login Options

Select one of these options:
- Save my user name - Remembers your username for next time
- Always ask for my user name and password - Requires full login each time
Click Login

Click the Login button to access your account. You’ll be redirected to your last accessed page or the main dashboard.

Username

Field Name: Username
Required: Yes
Description: Your ShipEdge username or email address used to log in.

Details:

Enter your username exactly as it was created
Username is case-sensitive
If saved, username may be pre-filled from cookies
Username must match an active account

Password

Field Name: Password
Required: Yes
Description: Your account password.

Details:

Enter your password exactly as it was set
Password is case-sensitive
Click the eye icon to toggle password visibility
Password is required for login

Remember Options

Field Name: Remember Me
Options:

Save my user name - Saves username in cookies for 30 days
Always ask for my user name and password - No saved credentials Details:
Username cookie expires in 30 days
Password is never saved unless auto-login is enabled
Auto-login option saves encrypted password for automatic access
Cookies are cleared when you log out

Automatic Login

If you previously enabled auto-login, ShipEdge checks saved cookies
System attempts to log you in automatically using saved credentials
If successful, you’re redirected to your last accessed page
If cookies are invalid or expired, you’ll see the login form

Cookie Storage

Auto-login cookies expire in 30 days
Username is stored in plain text
Password is encrypted using TEA encryption
Cookies are domain-specific and secure

Security

Auto-login only works from the same browser and device
Cookies are cleared when you log out
Invalid cookies require manual login

Password Reset

Requesting Password Reset

Click Forgot Password

On the login page, click Forgot Password? link below the login form.
Enter Email Address

In the modal window, enter your account email address in the User email field.
Send Request

Click Send Password button. The system will send a password reset email to your address.
Check Your Email

Look for an email from “no-reply@shipedge.com” with subject “Password Request”. Check your spam folder if you don’t see it.
Click Reset Link

Open the email and click the reset password link. The link expires at the end of the day.

Resetting Your Password

Open Reset Link

Click the reset password link from your email. The link includes a unique code.
Enter New Password

Enter your new password in the Password field. Password requirements:
- At least 8 characters
- At least 1 numeric character
- At least 1 lowercase letter
- At least 1 uppercase letter
Confirm Password

Enter the same password again in the Repeat password field to confirm.
Submit

Click Submit button. Your password will be updated and you’ll be redirected to the login page.
Log In

Log in with your username and new password.

Password Reset Details

Email Process

Reset email sent from: no-reply@shipedge.com
Email includes unique reset link with code
Link format: http://[server]/reset_password.php?cod=[code]
Link expires at end of day (midnight)

Reset Code

Unique code generated for each request
Code includes timestamp for expiration
Code stored as MD5 hash in database
Code cleared after successful reset

Password Requirements

Minimum 8 characters
Must include uppercase letter
Must include lowercase letter
Must include number
Passwords must match in both fields

Security Features

Failed Login Attempts

System tracks failed login attempts by IP address and username
After 3 failed attempts, account is temporarily blocked
Block duration: 10 minutes
Attempts reset after successful login

Blocking Messages

“User Name Blocked, try to login in [X] minutes”
Shows remaining time until block expires
Block applies to specific username and IP address
Different IP addresses have separate attempt counts

Audit Trail

All login attempts are logged in audit table
Records IP address, username, and timestamp
Successful logins update audit record with user ID
Failed attempts remain with null user ID

Account Status Checks

User Activation

Account must be active (Activated = 'Y')
Inactive accounts show: “User Inactive”
Deleted accounts (isDeleted = 'N') cannot log in
Account status checked before password validation

Account Validation

Username must exist in database
Account must not be deleted
Account must be activated
Password must match stored value

Location Restrictions

Country Access Control

Some accounts have country-based access restrictions
System checks your IP address location
Restricted countries show: “Access is restricted from your location”
Restrictions configured per account in countryaccess table

IP Address Restrictions

Specific users may have IP address restrictions
Certain IP ranges may be blocked
VPN IPs may be allowed for specific users
Restrictions enforced before login validation

GeoIP Detection

System uses GeoIP to detect your country
Checks country code (ISO 2 and ISO 3)
Compares against account restrictions
Blocks access if country is restricted

Validation Steps

Step 1: Form Validation

Username field must not be empty
Password field must not be empty
Client-side validation before form submission

Step 2: Security Checks

Check for account blocking (failed attempts)
Verify account is not deleted
Verify account is activated
Check location restrictions

Step 3: Password Validation

Compare entered password with stored password
Supports MD5 hashed passwords
Supports plain text passwords (legacy)
Supports crypt-based passwords

Step 4: Session Creation

Create user session
Set session variables (UserID, Username, AccountID)
Load user level and permissions
Set account identity based on user level

Step 5: Cookie Management

Set cookies based on “Remember Me” option
Save username if requested
Save encrypted password for auto-login if enabled
Set cookie expiration (30 days)

Step 6: Redirect

Redirect to last accessed URL (LastUrl)
Default redirect to index.php if no last URL
Clear any error messages
Write audit trail for login

User Level Assignment

User Level Types

Level 1: Account owner (userIdentity = AccountID)
Level 2 (WMS Manager): Warehouse manager (userIdentity = 'wh' or 'gerente')
Level 3: System admin (userIdentity = 'admin')
Level 4: Sub-admin (userIdentity = 'subadmin')

Session Variables

CurrentAcountID: Current account ID
alpaca_status_UserID: Current user ID
alpaca_arUserLevel: User level array
userIdentity: User identity string

Error Messages

“Incorrect username or password”

Username or password is wrong
Check spelling and case sensitivity
Verify account is active
Try password reset if needed

“User Inactive”

Account is deactivated
Contact ShipEdge support to reactivate
Account may be suspended

“User Name Blocked, try to login in [X] minutes”

Too many failed login attempts
Wait for block to expire
Block lasts 10 minutes
Try again after waiting

“Access is restricted from your location”

Your IP address or country is restricted
Account has location-based access control
Contact administrator to update restrictions
May need to use approved IP address

“Login cancelled”

Login process was cancelled
May occur during validation
Try logging in again

“Please enter user ID”

Username field is empty
Enter your username
Field is required

“Please enter password”

Password field is empty
Enter your password
Field is required

Best Practices

Use Strong Passwords

Create passwords with at least 8 characters, including uppercase, lowercase, and numbers. Avoid common words or personal information.

Save Username Only

Use “Save my user name” option instead of auto-login for better security. Enter password manually each time.

Log Out When Done

Always log out when finished, especially on shared computers. This clears your session and cookies.

Keep Email Updated

Ensure your account email is current for password reset emails. Check spam folder if reset email doesn’t arrive.

Report Suspicious Activity

If you notice unusual login activity, contact ShipEdge support immediately. Change your password if account may be compromised.

Use Secure Networks

Avoid logging in from public Wi-Fi networks. Use secure, private networks when possible to protect your credentials.

Troubleshooting

Cannot Log In

Problem: Login button doesn’t work or form doesn’t submit

Solution:
1. Check that username and password fields are filled
2. Verify JavaScript is enabled in browser
3. Try clearing browser cache and cookies
4. Try different browser
5. Check browser console for errors

Problem: “Incorrect username or password” but credentials are correct

Solution:
1. Check for extra spaces in username or password
2. Verify caps lock is off
3. Try copying and pasting credentials
4. Use password reset if needed
5. Contact support if issue persists

Problem: Account is blocked

Solution:
1. Wait 10 minutes for block to expire
2. Verify you’re using correct username
3. Check IP address hasn’t changed
4. Try from different network if possible
5. Contact support if block persists

Password Reset Issues

Problem: Reset email not received

Solution:
1. Check spam/junk folder
2. Verify email address is correct in account
3. Wait a few minutes for email delivery
4. Try requesting reset again
5. Contact support if email never arrives

Problem: Reset link expired

Solution:
1. Reset links expire at end of day
2. Request new password reset
3. Use new link immediately
4. Complete reset process quickly

Problem: Password reset form shows error

Solution:
1. Verify passwords match exactly
2. Check password meets requirements (8+ chars, uppercase, lowercase, number)
3. Try different password
4. Clear browser cache and try again

Problem: Auto-login not working

Solution:
1. Check that auto-login was enabled previously
2. Verify cookies are enabled in browser
3. Check cookies haven’t expired (30 days)
4. Try clearing cookies and logging in again
5. Re-enable auto-login if needed

Problem: Username not saved

Solution:
1. Select “Save my user name” option
2. Verify cookies are enabled
3. Check browser isn’t blocking cookies
4. Try different browser
5. Clear cookies and try again

Location Restriction Issues

Problem: “Access is restricted from your location”

Solution:
1. Verify you’re using correct account
2. Check if account has location restrictions
3. Contact administrator to update restrictions
4. Use approved IP address or VPN if allowed
5. Contact support for assistance

Next Steps:

Account Overview - Manage your account settings
Change Password - Update your password from account settings
Preferences - Configure account preferences