Prohibit user to login

Block user authentication in Aidbox by setting the inactive property to prevent login access.

User resource has inactive property. When it equals to true the user cannot login. Login attempts return 400 with "error": "invalid_grant" and "error_description": "User is inactive".

Using the API

Lock a user account

PATCH /User/my-user
Content-Type: application/json

{
  "inactive": true
}

Unlock a user account

PATCH /User/my-user
Content-Type: application/json

{
  "inactive": false
}

Aidbox does not automatically lock accounts after failed login attempts. Setting inactive to true is the only lockout mechanism.

Using the UI

  1. 1.
    Click the Users link in the left sidebar
  2. 2.
    Filter users list and click the desired user
  3. 3.
    Add inactive property value true
  4. 4.
    Press the Save button

Last updated: