Email code
Sign-in uses a one-time email code instead of asking users to remember another password.
Security and data boundary
ClaudeU uses email-code sign-in, controlled payment flows, and server-owned balance plus usage records. The site keeps records visible so users can review what happened.
Sign-in and Desktop authorization serve the current user flow.
Sign-in uses a one-time email code instead of asking users to remember another password.
After the web account is confirmed, Desktop can continue with that account.
After logout or re-authorization, the user center follows the current session state.
support@claudeu.com is used for support communication, and domain mail policies reduce spoofed sender risk.
SPF records limit which servers may send mail for claudeu.com and reduce forged sender sources.
DKIM signs message content with the domain so recipients can check whether mail was changed in transit.
DMARC connects SPF and DKIM results to a domain policy so receivers can handle impersonation attempts.
Forward suspicious ClaudeU mail to support@claudeu.com for review; do not reply with login codes, full card details, or sensitive information.
Users should know which records are used for review.
Balance crediting depends on payment confirmation and account records, not only a browser redirect.
The user center shows request ID, model, time, usage, and debit amount for review.
Billing records center on request ID, model, usage, debit, and status. The MVP does not store raw questions and answers as billing records.