Device Management
Authorize and control CLI and desktop app access.
Overview
Devices represent authorized CLI installations and desktop applications:
- Each device has a unique token
- Devices track activity and location
- You can revoke devices to remove access
Device List
The Devices page shows all authorized devices:
┌─────────────────────────────────────────────────────────────────────┐
│ Devices │
├─────────────────────────────────────────────────────────────────────┤
│ │
│ ┌──────────────────────────────────────────────────────────────┐ │
│ │ 💻 MacBook Pro [Current] [Revoke] │ │
│ │ CLI v1.2.0 • darwin arm64 │ │
│ │ San Francisco, US • Active now │ │
│ │ Sessions: 45 this week │ │
│ └──────────────────────────────────────────────────────────────┘ │
│ │
│ ┌──────────────────────────────────────────────────────────────┐ │
│ │ 🖥️ Windows Desktop [Revoke] │ │
│ │ CLI v1.2.0 • win32 x64 │ │
│ │ New York, US • Last active: 2 hours ago │ │
│ │ Sessions: 12 this week │ │
│ └──────────────────────────────────────────────────────────────┘ │
│ │
│ ┌──────────────────────────────────────────────────────────────┐ │
│ │ 🐧 Ubuntu Server [Revoke] │ │
│ │ CLI v1.1.0 • linux x64 │ │
│ │ AWS us-east-1 • Last active: 3 days ago │ │
│ │ Sessions: 8 this week │ │
│ └──────────────────────────────────────────────────────────────┘ │
│ │
└─────────────────────────────────────────────────────────────────────┘
Device Details
Click a device to view details:
Overview
| Field | Description |
|---|---|
| Name | Device hostname or custom name |
| Type | CLI, Desktop, or Other |
| Platform | Operating system |
| Architecture | CPU architecture |
| CLI Version | Installed CLI version |
| Location | Approximate location |
| Created | First authorization date |
| Last Active | Most recent activity |
Activity
- Total sessions
- Sessions this week
- Average session duration
- Most used commands
Access Log
Recent authentication events:
- Login timestamps
- IP addresses
- Locations
Authorizing a Device
Using the CLI
Loading code block...
This displays a code to enter at bootspring.dev/device.
Using the Dashboard
- Run
bootspring auth loginon the device - Note the displayed code
- Go to
bootspring.dev/device - Enter the code
- Confirm authorization
Authorization Flow
CLI Browser Server
│ │ │
│ POST /devices/authorize │ │
│────────────────────────────────────────────────────────▶│
│ │ │
│◀────────────────────────────────────────────────────────│
│ Device code + User code │ │
│ │ │
│ Display code to user │ │
│ "Enter code at bootspring.dev/device" │
│ │ │
│ │ User enters code │
│ │──────────────────────────▶│
│ │ │
│ │◀──────────────────────────│
│ │ Confirm device │
│ │ │
│ Poll for token │ │
│────────────────────────────────────────────────────────▶│
│ │ │
│◀────────────────────────────────────────────────────────│
│ Access token │ │
│ │ │
│ Store token locally │ │
Device Actions
Rename Device
Give devices meaningful names:
- Click device
- Click Rename
- Enter new name
- Save
Revoke Device
Revoking removes all access:
- Click Revoke on the device
- Confirm action
- Device is immediately logged out
Note: You cannot revoke your current device from the dashboard.
Revoke All Devices
In emergency situations:
- Go to Settings > Security
- Click Revoke All Devices
- Confirm action
- All devices except current are revoked
Device Limits
| Plan | Max Devices |
|---|---|
| Free | 2 |
| Pro | 5 |
| Team | 20 per user |
| Enterprise | Unlimited |
Security Features
Suspicious Activity Detection
Bootspring monitors for:
- Logins from new locations
- Multiple failed attempts
- Unusual usage patterns
You'll receive alerts for suspicious activity.
Automatic Revocation
Devices may be auto-revoked for:
- 90 days of inactivity
- Security policy violations
- Account suspension
Location Tracking
Location is determined from IP address:
- City and country
- Not precise coordinates
- Can be disabled in settings
CLI Commands
Loading code block...
Troubleshooting
Device Authorization Fails
Code expired: Codes expire after 15 minutes. Run bootspring auth login again.
Code invalid: Ensure you're entering the code exactly as shown.
Network issues: Check your internet connection.
Device Limit Reached
Revoke unused devices:
- View device list
- Identify inactive devices
- Revoke them
- Try authorizing again
Device Shows Wrong Location
Location is based on IP address and may be inaccurate:
- VPN usage affects location
- ISP routing can cause misattribution
- Not a security concern
API Integration
See Devices API for programmatic access.
Loading code block...
Related
- Device Auth Flow - Technical details
- Devices API - API reference
- CLI Auth - CLI commands