Manually add and edit users
Manage users
About managing users
User management is about managing user records, and controlling what users can do and access within your product. You can set this up to be simple or complex, depending on your company’s needs.
Default user settings
Link to this sectionUsers and organizations
Link to this sectionWhether or not you manage multiple organizations in Kinde, all users need to belong to at least one organization. You can specify which organization users are added to, or else they are added to the default organization.
You can add users to other organizations or change the organizations they belong to at any time.
If a user belongs to multiple organizations, they will be prompted to select an organization when they sign in.
Users can sign themselves up
Link to this sectionBy default, users will be allowed to sign up to your applications without being invited. If you would prefer your users to be invitation only, go to Settings > Environment > Policies and switch off the Allow self-sign up option.
Tip: If users can sign themselves up, you might want to also set a default role for new users.
User profiles are synced to Kinde
Link to this sectionWhen a user signs in, some of their basic profile details (email, name, picture, etc.) from the external provider (MS Entra ID, Google, etc.) are passed to Kinde as well. For example, if you manage user access via a SAML connection, then their profile stored with the external identity provider is synced to Kinde each time they sign in.
You should leave this switched on if you are using enterprise connections for authenticating users. If you want, you can disable it in Settings > Environment > Policies by de-seleting the Sync user profiles on sign in option.
User identities are different to profiles
Link to this sectionUser profiles are not quite the same as user identities, which can also include contact information, access rights, and sign in credentials. User may have just one, or multiple identities (e.g. a username+password, and a Google SSO identity). Manage user identities via the dashboard or via API.
Options for adding users
Link to this sectionYou can add users manually, import them from a CSV file, or add them via API. If you are transferring user details from another service, such as Auth0, you need to obtain the details from the service before you can import.
Permissions and roles
Link to this sectionPermissions and roles are defined at the ‘Business’ level in your Kinde account - which is the global level; but they are applied per user at an ‘organization’ level. This means you just have to create them once and they are made available across your whole business structure.
Kinde provides the ability to set individual permissions at a user level, and to create roles (sets of permissions) for easier user management.
A user can be assigned multiple roles, and assigned permissions on top of these. We recommend you work out a model for managing this, starting with basic permissions.
You can include user roles in access tokens.
Recommended approach
While everyone’s needs are different, we recommend you write your code based on permissions, not roles, as it gives you more control and will scale better when you are managing a lot of users.