Smoother sign-in and account setup
A post-login routing race is fixed, destructive deletes now confirm, the email-auth banner hides once you fully pass, and sign-in, signup, and workspace-access controls behave correctly.
Signing in and getting set up should be the parts of the product you never have to think about. A first-load timing issue could mis-route you right after login, a few setup and delete flows were riskier or more confusing than they needed to be, the email-authentication banner kept nagging after you had fully authenticated, and some sign-in errors pointed you in the wrong direction.
What was happening
Right after sign-in, the app sometimes checked your authentication state before it had finished loading — a race that could send you to the wrong place on first load. Several setup flows had rough edges. Destructive actions — deleting a connector, a tracking domain, an offering, or a knowledge base — relied on a risky second click rather than a clear confirmation, so an accidental tap could remove something important. Connecting Telegram used the wrong link and gave no indication that it was waiting on verification. Finishing onboarding did not take you anywhere obvious next. Campaign test, launch and resume actions were not checked against backend readiness before you tried them, so you could attempt an action that was not actually ready. The "strongly recommended" email-authentication banner stayed up even after SPF, DKIM and DMARC all passed. And the sign-in form could hide a missing password behind an "invalid email" error, signup did not ask you to confirm your password, and owners could not adjust an admin's workspace access.
What we fixed
The first-load authentication race is resolved, so you land where you should right after signing in. Destructive deletes now go through a proper confirmation dialog instead of a second click. Telegram uses the correct app deep link and shows a pending state until it is verified. Finishing onboarding now routes you straight to billing. Campaign test, launch and resume are pre-checked against backend readiness, so you only attempt actions that can actually run. The email-authentication banner now hides itself once SPF, DKIM and DMARC all pass. On sign-in and team management: login validates email and password together so a missing password is no longer masked by an invalid-email error, signup asks you to confirm your password, and owners can now edit an admin's workspace access.
Why it matters
Getting into your account and setting it up is now clearer and safer. You do not get bounced to the wrong screen after logging in, you cannot delete something important with a stray click, and the email-auth banner stops nagging once you have genuinely finished. Login errors tell you what is actually wrong, new sign-ups confirm their password up front, and owners stay in control of who can access which workspace.