User Management

Prev Next

In the DPS, back-office users with write permissions on the User resource (Read/Write user, Write user permissions, Write user status) can create new users and manage them.
This can be done from the Users section which is present in the Account page, or in the editing page of an Organization, Partner, Customer or Location.

The Users section allows back-office users to:  

  • View users belonging to the parent business entity (e.g. other colleagues).

  • View all users belonging to the related business entities (sub-organizations, partners, sub-partners, customers, locations) by switching the Show all Users button.

  • Search for a user by text key on name or email.

  • Edit a user (general information, permissions, status, notifications) or delete it.

User Creation

By clicking the Add user button, a new user creation process is started.

Optionally, the page may ask to provide other information (e.g. mobile number), but this depends on how you have defined the user properties.

Once the Save button is pressed, the user being created receives an activation email.

The received email contains a link to complete the user activation. This step ensures that only valid users can gain access to the DPS.

The URL is valid for 30 days. Once expired, the activation email must be sent again.

By clicking on the activation link in the email, the new user can complete the registration by configuring its private password and accepting the application agreements (Terms of Service, Privacy Policy).

Pressing the Update button activates the new users by saving its password (stored with Bcrypt hashing) and the agreements’ acceptance timestamp.

User Editing

Back-office users can select a user from the list and access its editing page, which is composed by the following sections:

  • General

  • Permissions

  • Activity

  • Notifications

Permissions

In the Permissions section back-office users can manage the permissions associated with the user being edited.

When a user is created, it is automatically associated with a default user type, but it is possible to change the User Type which defines what the user can see and do through permissions.

For security reasons, the editor user can select a user type having a rank lower or equal than the one associated to it.
In this way, simple back-office users cannot associate or change high-level user types.  

Optionally, the back-office user can configure the End Date after which the user will be no longer available to access the DPS (if empty the user duration has no limits).

Activity

In the Activity section back-office users can have an overview of the user activity in the DPS, and this includes:

  • Status of the user

    • PENDING ACTIVATION: the user has never completed the activation process.

    • PENDING ACCESS: the user completed the activation process, but the login is missing.

    • ACTIVE: the user is active and at least a login to the DPS has been performed.

    • SUSPENDED: the user has been suspended for inactivity (e.g. 6 months without any access).

  • Privacy policy acceptance date: the date/time when the user last accepted the Privacy Policy agreement.

  • Terms of service acceptance date: the date/time when the user last accepted the Terms of Service agreement.

  • Last access: the last date/time the user access the DPS.

If the created user remains in PENDING ACTIVATION for a long time, it could mean that the registration email has been ignored, or the activation link has expired.
In this case, the back-office user can resend the registration email by clicking the Resend email button.

Notifications

In the Activity section back-office users can have an overview of the notification preferences of the user.

Optionally, they can change preferences on user behalf.

User Deletion

A back-office user can delete another user by entering the editing page of the user to delete, and press the Delete button present in the General section.

Once confirmed, the selected user will be deleted and will no longer be able to access the DPS.