Users Overview
Users are the accounts that authenticate through Autentico. Each user has a username, an optional email, a bcrypt-hashed password, and associated MFA state.
User sections
Section titled “User sections”- User Model — the fields that make up a user record
- Managing Users — creating, updating, and deactivating users via the Admin UI and API
- Self-Signup — allowing users to register themselves
- Account Lockout — automatic lockout after failed login attempts
Autentico supports two roles:
| Role | Capabilities |
|---|---|
user | Standard user — can authenticate, manage their own passkeys and trusted devices |
admin | Can access the admin API and admin UI |
Roles are assigned at user creation or updated by an admin. The role is not included in tokens by default — it is an internal Autentico concept for access control to the admin API.