Users
The main user interface at admin/users has a filterable table, allowing you to filter by role, and whether to display, pending, or disabled users. There's also a keyword search field which searches first/lastname and email.
From this interface you can create new Users, or view/edit existing users.
The edit function simply updates user properties, where as the view function will also display certain actions you can take on that user, such as:
- Assume User: Assume a user account so you can test this user's permissions and access. Note, you will need to logout/in again to resume your old session
- Edit Permissions: View a user's permissions and add account specific overrides.
- Disable User: Disable this user via the Soft Delete system. The account is recoverable.
- Reset Password: Sends a new password via Email to that user
When accounts are deleted, they are just "soft deleted", by setting a date on the deletedAt property for a user. Once they are soft deleted, you can view the deleted users by selecting "All" or "Disabled" from the filter dropdown, and then on the deleted users you will have two options - one to recover the user back to the active state, and the other to "destroy" or Permanently delete that user. So completely removing a user account is a two stage process.
If a user has the require password change on next login checkbox ticked, then after they next login, a session variable is set to force all subsequent page requests (except logout and the actual password change form) to the password update form.