User Management

The User Management section allows administrators to create, edit, and manage user accounts in S-Auth.

User List

Navigate to Users to see all registered users.

Features

Search - Filter users by name, email, or user ID
Sort - Click column headers to sort
Pagination - Navigate through large user lists
Quick Actions - Edit, reset password, or delete from the list

User Information

Field	Description
User ID	Unique identifier (e.g., JD-1234)
Name	First and last name
Email	User's email address
Access Level	admin, user, or suspended
Created	Account creation date
Last Login	Most recent login

Creating a User

Click New User button
Fill in the required fields:

Field	Required	Description
First Name	Yes	User's first name
Last Name	Yes	User's last name
Email	Yes	Must be unique
Password	Yes	Minimum 8 characters
Access Level	Yes	admin or user

Click Create User

The user ID is automatically generated from the user's initials plus a random number (e.g., JD-7392).

Password Requirements

Minimum 8 characters
Recommended: Mix of uppercase, lowercase, numbers, symbols

Editing a User

Click on a user in the list, or click the Edit action
Modify the fields:
- First Name
- Last Name
- Email
- Access Level
Click Save Changes

Note: You cannot change a user's ID or directly edit their password here.

Access Levels

Level	Description	Can Login	Admin Access
`admin`	Full access	Yes	Yes
`user`	Normal user	Yes	No
`suspended`	Account disabled	No	No

Changing Access Level

To suspend a user:

Edit the user
Change Access Level to Suspended
Save changes

The user will immediately lose access to all applications.

Resetting Passwords

When a user forgets their password:

Find the user in the list
Click Reset Password action
A new temporary password is generated
Share this password securely with the user
User should change it on first login

Generated Password

The temporary password is:

Randomly generated
16 characters long
Mix of letters, numbers, and symbols
Displayed once - copy it immediately!

Deleting a User

warning

Deleting a user is permanent and cannot be undone.

Find the user in the list
Click Delete action
Confirm the deletion

What Gets Deleted

User account
All active sessions
All access tokens
All refresh tokens
Authorization history

Note: OAuth applications created by this user are NOT deleted.

Bulk Operations

Currently, bulk operations are not supported. Users must be managed individually.

API Access

User management is also available via the Admin API:

# List users
GET /admin/users

# Get user
GET /admin/users/:id

# Create user
POST /admin/users

# Update user
PUT /admin/users/:id

# Delete user
DELETE /admin/users/:id

# Reset password
POST /admin/users/:id/reset-password

See API Reference for full documentation.

Best Practices

Use strong initial passwords - Generate secure passwords for new users
Regular access reviews - Periodically review who has admin access
Suspend, don't delete - Consider suspending inactive users instead of deleting
Document admin accounts - Keep track of who has admin access and why

User List​

Features​

User Information​

Creating a User​

Password Requirements​

Editing a User​

Access Levels​

Changing Access Level​

Resetting Passwords​

Generated Password​

Deleting a User​

What Gets Deleted​

Bulk Operations​

API Access​

Best Practices​