Manage Users

Security Requirements and Controls

Effective user management is essential for maintaining proper security boundaries and ensuring appropriate access control across your LogScale environment. The Role-Based Access Control (RBAC) system in LogScale provides comprehensive tools for managing user accounts and their access. This section guides administrators through the complete lifecycle of user management, including creating new user accounts, editing user information, assigning and customizing roles with specific permission sets, removing users from the system, and granting granular permissions to specific assets.

List of Users

To see a list of user accounts, do the following from the user inferface:

  1. Click on the user menu icon and select Organization SettingsUsers.

    All of the existing users will be displayed. To edit information or permissions on a user, click on their name.

To get a list of users with your own application, use the GraphQL API, specifically the users() query.

Creating User Accounts

Security Requirements and Controls

From the same page, you can add a new user account. Do the following steps:

  1. Click on the user menu icon and select Organization SettingsUsers.

  2. Next, click + Add User.

  3. In the input box, provide a username and fill in the form with the information required.

  4. When finished, click Save.

The new user should be visible in the Users page. To add a user with the GraphQL API, use the addUserV2() mutation.

Screenshot of the LogScale 'Add User' form interface showing input fields for entering new user account information such as username, name, and email. This dialog appears after clicking the '+ Add User' button in the Organization Settings> Users section and includes a Save button at the bottom to complete the user creation process. This interface is only accessible to Organization Owners or users with the 'Manage users' permission.

Figure 50. Create a User


Note

To access the Users page and to be able to add users, you have to be the Organization Owner or have Manage Users organization level permission.

Edit a User Account

Security Requirements and Controls

To edit a user account's information, first get a list of users and then select the user's account as explained in the steps here:

  1. Click on the profile menu icon and select Organization SettingsUsers.

  2. Click the name of the user to view or edit from the list.

  3. Click the Permissions tab to view a list of all the repositories on which the user has permissions. Click the name of the Repository or View for a detailed list of the user's permissions and roles on that specific repository or view, or to see a user's Aggregate Permissions.

  4. Click the Information tab to view and edit the details of a user, such as their first or last name. Click Save to save the changes.

To get information on a specific user with the GraphQL API, use the user() query. To change information about a user with GraphQL, use the updateUser() mutation.

For information about the Danger Zone, see Remove a User Account.

Remove a User Account

Security Requirements and Controls

  1. Click the profile menu icon and select Organization SettingsUsers on the left.

  2. Click the name of the user to remove from the list.

  3. Click Danger zone, insert the user's name, and click Remove. Confirm to delete the user permanently.

To remove a user with the GraphQL API, use the removeUser() mutation to do so based on their user name. To remove a user based on their user ID, use removeUserById().