User manager tool

Introduction
The user management tool allows you to modify your profile, and, if you have the admin rights, of other users and some extra security settings. To access this tool, click the user icon on the top bar.
From the left-side menu, you can access the following pages:
- Profile
- User Management (only for users with Admin rights)
- Security (only for users with Admin rights)
Profile

The Profile page is shown by default when clicking the user icon within the top bar menu. It allows changing your user password and selecting the language used by the content management tools.
- To be able to change your password, you need to enter the old password - without it, only a user with admin rights can perform the password change.
- There are 13 languages to choose from - by default, the language is set to "Automatic", which uses the browser language to select the interface language.
User Management


This page allows admins to perform the following actions:
- Create new users → click the "New" button and enter the username, the password (twice), and the access rights.
- Modify existing users → click the pen button next to a user, and update the username, the password, and/or the access rights.
- Remove users → click the "x" orange button next to a user to delete it.

User rights
The user access rights govern the methods by which a user can log onto the player and perform different tasks. The permissions to perform certain operations are assigned to specific roles. Members are assigned particular roles, and through those role assignments acquire the permissions needed to perform particular system functions. Since users are not assigned permissions directly, but only acquire them through their role(s), management of individual user rights becomes a matter of simply assigning appropriate roles to the user's account; this simplifies common operations, such as adding a user, or changing a user's access rights.
When creating a new user, the administrator can choose one or more rights to give to that user, from the following:
- Read-only access
- Content authoring
- The user can publish content from Elementi, and can authorize the
webstorage_***()
RPC commands. - On HMP350, HMP300, and DiVA players, the user can also use the built-in content management application.
- The user can publish content from Elementi, and can authorize the
- Monitoring (not available on DiVA)
- The user has limited access to the Control Center home page, the player logs, and can generate player reports. This right also allows access to the Status API and can be used to authorize some RPC commands (
get_info()
,get_config()
).
- The user has limited access to the Control Center home page, the player logs, and can generate player reports. This right also allows access to the Status API and can be used to authorize some RPC commands (
- Admin
- This gives full administrator access to Control Center (including to manage other users) and to the player APIs.
Security

From this page, a user with admin rights can enable/disable the following security features:
- Password protect RPC admin
- If disabled, the access to the RPC endpoint no longer requires authorization, thus anybody can send RPC commands to the player.
- Password protect content publishing
- If disabled, the access to the player content server no longer requires authorization, thus anybody can publish onto that player.
- Password protect monitoring
- If disabled, the access to the monitoring endpoints no longer requires authorization, thus anybody can access the player's logs, snapshot, and status information.