Skip to main content
The login command authenticates your CLI session with the Panguard Cloud. By default it opens a browser for OAuth authentication, but also supports headless environments with the --no-browser flag.

Usage

panguard login [options]

Options

--api-url
string
Override the default Panguard API endpoint. Useful for self-hosted or staging environments.
--no-browser
flag
Use device-code authentication instead of opening a browser. Prints a URL and code to enter manually — ideal for SSH sessions and headless servers.
--lang
string
default:"en"
Set the language for login prompts and messages.

Examples

panguard login

Authentication Flow

  1. CLI opens your default browser to the Panguard login page
  2. You sign in with email, Google, or GitHub
  3. Browser redirects back and the CLI receives the token
  4. Token is stored securely in ~/.panguard/credentials
Authentication tokens are valid for 30 days and refresh automatically. You only need to log in again if the token expires or you explicitly log out.

Plan Requirements

Available on all plans including Community (Free).

Account Setup

Create your Panguard account before logging in.

panguard logout

End your current CLI session.

panguard whoami

Verify your authenticated identity.

Auth Troubleshooting

Fix common authentication problems.