User manager tool
From SpinetiX Support Wiki
Introduction
Part of the player web interface, the user management tool allows you to modify your profile, and, if you have the admin rights, of other users and some extra security settings.
To access this tool, click the user icon on the top bar.
From the left-side menu, you can access the following pages:
- Profile
- User Management (only for users with Admin rights)
- Security (only for users with Admin rights)
Profile
The Profile page is shown by default when clicking the user icon within the top bar menu. It allows changing your user password and selecting the language used by the content management tools.
- To be able to change your password, you need to enter the old password - without it only a user with admin rights can perform the password change.
- There are 13 languages to choose from - by default, the language is set to "Automatic", which uses the browser language to select the interface language.
User Management
This page is available only to users with Admin rights.
This page allows admins to perform the following actions:
- Create new users
- Change passwords of existing users
- Change the rights of existing users
- Remove users
User rights
When creating a new user, the administrator can choose one or more rights to give to that user, from the following:
- Read-only access
- Content authoring
- The user can fully use the content management tools to create and schedule content.
- This user can also be used within Elementi to publish content onto the player and to authorize
webstorage_***()
RPC commands.
- Monitoring
- The user can access the Control Center home page, the player logs and can generate player reports.
- This user can also be used to authorize
get_info()
andget_config()
RPC commands.
- Admin
- The user has full access, including to Control Center, and can manage other users.
Note:
The SRP icon next to each user indicates whether SRP is activated for that user – in case a warning icon is shown, simply update the user password to enable SRP. For more details, see Server Security section.
Security
This page is available only to users with Admin rights.
From this page, you can enable / disable the following security features:
- Password protect RPC admin
- If disabled, the access to the RPC endpoint no longer requires authorization, thus anybody can send RPC commands to the player.
- Password protect content publishing
- If disabled, the access to the player content server no longer requires authorization, thus anybody can publish onto that player.
- Password protect monitoring
- If disabled, the access to the monitoring endpoints no longer requires authorization, thus anybody can access the player's logs (
http://Player_address/log/
), snapshot (http://Player_address/status/snapshot
), and status information (http://Player_address/status/info
).
- If disabled, the access to the monitoring endpoints no longer requires authorization, thus anybody can access the player's logs (
Note:
It is highly recommended keeping all password protections enabled!