Skip to main content

Manage Users

A user in ThunderID represents an account that can authenticate with your applications. Each user has:

  • A unique ID generated by ThunderID on account creation.
  • A user type (for example, customer or employee) that determines the profile attributes, validation rules, and registration settings for that user.
  • A set of attributes that match the schema defined by their user type.
  • An organization unit that defines the user's place in the organizational hierarchy.

Users and Organization Units

Every user belongs to an Organization Unit (OU) and has a user type. These two work together:

  • The user type defines what the user looks like. Their attributes, constraints, and registration rules.
  • The organization unit defines where the user belongs in the organizational hierarchy.

Each user type belongs to a specific OU. A user of that type can only be created under that OU or one of its descendants. This means, for example, you cannot place a Customer-type user under the Default OU, or a Person-type user under the Customers OU.

See Organization Units for more information on how OUs structure your users and User Types for how user types define attribute schemas and registration settings.

Onboard a User

ThunderID uses a single Add User flow for both direct account creation and invite-based onboarding.

  1. Navigate to Users in the ThunderID Console and click Add User.
  2. Select a User Type to determine the user's attribute schema.
  3. Select an Organization Unit that determines the user's position in the organization hierarchy.
  4. Choose how to onboard the user:
    • Create User: Provision the user immediately by providing all required details and credentials.
    • Invite User: Generate an invite and let the user finish onboarding later.
  5. Complete the remaining steps for the selected path.

When you create the account directly, provide the required user details and credentials, then submit the flow to provision the user immediately.

When you invite the user, enter the user's Email address and choose an invite method:

  • Send Invite Email: ThunderID generates the invite and sends the email.
  • Get Invite Link: ThunderID shows a copyable invite link that you can share with the user.

If the email service is unavailable, ThunderID still provides a copyable invite link so you can share it manually.

tip

The attributes available during onboarding depend on the selected user type. See User Type Reference to understand the defaults, or User Types to create your own.

Update a User

  1. Open the user from the Users list.
  2. Edit the attributes you want to change.
  3. To update group membership, add or remove groups on the Groups tab.
  4. Click Save.

Delete a User

  1. Open the user from the Users list.
  2. Click Delete and confirm.
warning

Deleting a user is permanent. The user's account, attributes, and group memberships are removed immediately.

  • User Types - Define schemas and attribute rules for each user type
  • Organization Units - Manage the organizational hierarchy that contains users
  • Flows - Configure registration flows for self-service sign-up
ThunderID LogoThunderID Logo

Product

DocsAPIsSDKs

Community

ContributingDiscussionsReport an Issue

Resources

ReleasesGitHub
© WSO2 LLC. All rights reserved.