GitHub 0

User Management

Learn how to manage users and set up passkeys in Pocket ID

Creating users in Pocket ID can be handled in two ways:

  1. Manually create users via the admin interface.
  2. Sync users from an LDAP source.

Once users have been created using one of the methods above, follow the steps below to help configure passkeys for them.

Setting Up User Passkeys

[!TIP] As the admin, you cannot add passkeys for users; end users must configure them on their own.

Passkeys can be stored in services like Bitwarden, LastPass, iCloud, or even locally on certain devices using platform authenticators.

Login Code

  1. Navigate to the Users page in the Pocket ID admin dashboard.
  2. Locate the user you want to set up a passkey for.
  3. Click the three dots on the right side of the user row.
  4. Click Login Code.
  5. Select an Expiration Time for the link.
  6. Click Generate Link and send it to the user to allow them to set up their new passkey.

One-Time Access Email

This method requires a valid SMTP server set up in Pocket ID.

Allowing users to sign in with a link sent to their email significantly reduces security, as anyone with access to the user's email can gain entry.

  1. Navigate to the Application Configuration section in the Pocket ID admin dashboard.
  2. Expand the Email section and enable the Email One-Time Access option.
  3. Instruct the user to navigate to Pocket ID, e.g., https://id.example.com.
  4. Have the user click on the Don't have access to your passkey? link at the bottom of the page.
  5. Have the user enter their email associated with their Pocket ID account and click Submit.
  6. The user will receive an email with a One-Time Access link to set up their passkey.

Signup Tokens

Since Pocket ID v1.5.0+, an admin can create a Signup Token Link with a customizable expiry date and use limit. Users can use this link to create their account and initial passkey.

To enable this functionality:

  1. Goto Application Configuration > Enable User Signups
  2. Change the dropdown value to Signup with token
  3. Goto Users > Add User dropdown > Create Signup Token

You can also view existing tokens and revoke them:

  1. Goto Users > Add User dropdown > View Active Signup Tokens
Help improve this page
Edit this page on GitHub