Internal IdP
This page describes how to manage user and user groups using Traefik Hub as IdP.
Introduction¶
User and user group management is an important aspect of API Management that involves the creation, modification, and deletion of user accounts and groups in order to manage access and permissions to APIs, API Gateways and API Portals.
User and user group management only applies to API Management
Traefik Hub acts as Identity (IdP) provider and stores all settings related to user management.
It does not applies to service Ingresses!
User and user groups are created through the Hub UI and can be referenced in the CRDs.
User¶
A user is everyone who consumes an API or API collection.
Every consumer in Traefik Hub has a user account. The user account identifies the user, and the user account settings determine which APIs, API collections and API Portal the user can access.
Each user account must contain the following:
- User's First Name
- User's Last Name
- Email Address
- Company
- Group(s)
In Traefik Hub, every user needs to be part of a user group. It is not possible to assign an individual user to an API or API collection.
Check the tutorial about user management.
User Groups¶
Groups are a means of categorizing users. This allows for granting permissions to a specific group, for example to API collections.
A user may belong to any number of groups and automatically has all the permissions granted to that group.
In Traefik Hub, every user needs to be part of a user group.
Check the tutorial about user management.
What's next¶
- Learn how-to add user
- Learn more about managing API Portal permissions