This chapter explains basic details of what user objects are and what rules apply to their APIs.
All of the broader parts of the functionality can be turned on or off as needed, for instance, it is possible to disable the ability for users to sign up themselves. Read the configuration chapter for details.
The basic attributes of users are:
Depending on needs, either display_name or first/middle/last name can be used - the very notion of first and other names may possibly not exist in a user's culture, hence Zato can be configured to enforce their existence or not.
In the context of SSO (Single-Sign On), users may have access to one or more applications - app_list describes to what a given user may log in or otherwise interact with.
Moreover, it is possible to attach an arbitrary set of key/value attributes to users, each attribute possibly encrypted and with an optional expiration time - they can be used to extend information about users to cover supplementary needs, such as timezone, a phone number or address.
User accounts may be linked to Basic Auth or JWT definitions, enabling in this way multi-auth accounts.
Consult the following chapters for user-related topics: