aerogramme.deuxfleurs.fr/content/documentation/cookbook/static-user-management.md

+++
title = "User Management"
weight = 20
+++

Aerogramme can externalize its user management through [LDAP](@/documentation/cookbook/ldap.md), but if you target a simple deployment, it has also an internal user management system that will be covered here. 

As a pre-requisite, you must have your `aerogramme.toml` file configured for "Static" user management as described in [Configuration file](@/documentation/cookbook/config.md). You also need a configured Garage instance, either [local](@/documentation/cookbook/single-node-garage-storage.md) or [distributed](@/documentation/cookbook/garage-cluster-storage.md).

## Adding users

Once you have done all the previous pre-requisites, Aerogramme provides a command-line utility to add a user:

```bash
aerogramme provider account add --login alice --setup  <(cat <<EOF
email_addresses = [ "alice@example.tld", "alice.smith@example.tld" ]
clear_password = "hunter2"
storage_driver = "Garage"
s3_endpoint = "http://localhost:3900"
k2v_endpoint = "http://localhost:3904"
aws_region = "garage"
aws_access_key_id = "GKa8..."
aws_secret_access_key = "7ba95..."
bucket = "aerogramme-alice"
EOF
)

aerogramme provider account add --login bob --setup  # ...
# ...

aerogramme provider account add --login charlie --setup  # ...
# ...
```

*You must run this command for all your users.*

If you don't set the `clear_password` field, it will be interactively asked.

This command will edit your `user_list` file. If your Aerogramme daemon is already running, you must reload it in order to load the newly added users. To reload Aerogramme, run:

```bash
aerogramme provider reload
```

## Change account password

You might need to change an account password, you can run:

```bash
aerogramme provider account change-password --login alice
```

You can pass the old and new password through environment variables:

```bash
AEROGRAMME_OLD_PASSWORD=x \
AEROGRAMME_NEW_PASSWORD=y \
aerogramme provider account change-password --login alice
```

*Do not forget to reload*

## Delete account

```bash
aerogramme provider account delete --login alice
```


*Do not forget to reload*
cookbook skeleton 2024-01-22 10:01:47 +00:00			`+++`
Rework skeleton 2024-01-22 11:03:09 +00:00			`title = "User Management"`
Start filling the cookbook 2024-01-23 11:08:50 +00:00			`weight = 20`
cookbook skeleton 2024-01-22 10:01:47 +00:00			`+++`

Start filling the cookbook 2024-01-23 11:08:50 +00:00			`Aerogramme can externalize its user management through [LDAP](@/documentation/cookbook/ldap.md), but if you target a simple deployment, it has also an internal user management system that will be covered here.`

			As a pre-requisite, you must have your `aerogramme.toml` file configured for "Static" user management as described in [Configuration file](@/documentation/cookbook/config.md). You also need a configured Garage instance, either [local](@/documentation/cookbook/single-node-garage-storage.md) or [distributed](@/documentation/cookbook/garage-cluster-storage.md).

			`## Adding users`

			`Once you have done all the previous pre-requisites, Aerogramme provides a command-line utility to add a user:`

			```bash
			`aerogramme provider account add --login alice --setup <(cat <<EOF`
			`email_addresses = [ "alice@example.tld", "alice.smith@example.tld" ]`
			`clear_password = "hunter2"`
			`storage_driver = "Garage"`
			`s3_endpoint = "http://localhost:3900"`
			`k2v_endpoint = "http://localhost:3904"`
			`aws_region = "garage"`
			`aws_access_key_id = "GKa8..."`
			`aws_secret_access_key = "7ba95..."`
			`bucket = "aerogramme-alice"`
			`EOF`
			`)`

			`aerogramme provider account add --login bob --setup # ...`
			`# ...`

			`aerogramme provider account add --login charlie --setup # ...`
			`# ...`
			```

			`You must run this command for all your users.`

			If you don't set the `clear_password` field, it will be interactively asked.

			This command will edit your `user_list` file. If your Aerogramme daemon is already running, you must reload it in order to load the newly added users. To reload Aerogramme, run:

			```bash
			`aerogramme provider reload`
			```

			`## Change account password`

			`You might need to change an account password, you can run:`

			```bash
			`aerogramme provider account change-password --login alice`
			```

			`You can pass the old and new password through environment variables:`

			```bash
			`AEROGRAMME_OLD_PASSWORD=x \`
			`AEROGRAMME_NEW_PASSWORD=y \`
			`aerogramme provider account change-password --login alice`
			```

			`Do not forget to reload`

			`## Delete account`

			```bash
			`aerogramme provider account delete --login alice`
			```


			`Do not forget to reload`