Users (as well as permissions and roles) are used to control access to a web application resources. You can manage them (add, edit, and delete) from the backend using the Audience/Users
section:
Each user has name:
Also, on the Roles
tab you can assign the roles to a user:
In order to be able to get to the backend, user must have the Administrator
role. Please note, that this role only allows to browse the backend, not to access any section. You can use Do everything
permission to provide access to all the sections for a role.
Let’s back to the users. While user itself has only a name, it doesn’t store any information about how it signs in. This information is stored using the Credential objects. Each user can have different credentials, and each credential has its type (it can be email and password, Facebook account, Microsoft account and so on). When user signs in, Platformus checks whether there is an credential with the given type, identifier, and secret exists. If the credential is found, corresponding user is signed in.
The credential list looks like this:
And this is the credential itself:
(MD5 hashing algorithm will be replaced with the stronger one soon.)