User Management
Overview
Section titled “Overview”Super Admin users have full control over user accounts within the Transpeye platform. This includes creating new users, editing existing account details, assigning the correct role to control what each user can access, deleting accounts that are no longer needed, and logging in as another user to diagnose reported issues.
User management actions are performed from dedicated pages accessible to Super Admin users. The key URLs are:
| Action | URL |
|---|---|
| Create a new user | /register_user |
| Edit an existing user | /edit_user |
| Delete a user | /delete_user |
| Log in as another user | /login_as_user |
Understanding User Roles
Section titled “Understanding User Roles”Transpeye uses a role-based access model. Every user is assigned exactly one role, which determines what they can see and do within the platform. Assigning the correct role at the time of account creation is important — overly permissive roles create security risks, and overly restrictive roles prevent users from doing their work.
ROLE_SUPERADMIN (Level 1)
Section titled “ROLE_SUPERADMIN (Level 1)”Super Admin users have unrestricted access to the entire Transpeye platform. They can manage all customer accounts, all user accounts, all device configurations, and all system settings. They can also log in as any other user for diagnostic purposes.
This role is reserved exclusively for Transpeye staff. Do not assign this role to customer or partner personnel under any circumstances.
ROLE_PARTNER (Level 2)
Section titled “ROLE_PARTNER (Level 2)”Partner users are resellers or service providers who manage multiple end-customer accounts on behalf of Transpeye. A Partner user can access all features of Transpeye within the scope of their assigned customer accounts. They can view and manage stores, devices, users, POS integrations, analytics, and alerts for every customer account assigned to them.
Partner users cannot access or modify accounts that have not been explicitly assigned to them.
ROLE_DISTRIBUTOR (Level 3)
Section titled “ROLE_DISTRIBUTOR (Level 3)”Distributor users sit between the Super Admin and Partner levels in the account hierarchy. A Distributor can manage Partner accounts and Customer accounts that are assigned beneath their Distributor profile. They have a broader view than a Partner but cannot access platform-wide Super Admin functions such as system configuration or global user management.
ROLE_CUSTOMER (Level 10)
Section titled “ROLE_CUSTOMER (Level 10)”Customer users are end users with access to their own account’s data only. They can view analytics dashboards, transaction records, alerts, and alarms for their own account. They can manage their own account settings and users within their account. They cannot access any other customer’s data, and they cannot manage Partner or Distributor accounts.
Step-by-Step Guide
Section titled “Step-by-Step Guide”Step 1: Create a New User
Section titled “Step 1: Create a New User”Navigate to /register_user. The registration form contains the following fields:
Email Address The user’s email address. This is their login identifier and the address to which password reset or welcome emails are sent. Use the user’s primary business email address. Each email address must be unique within the platform.
Name / Display Name The user’s full name as it should appear within the platform. This name appears in audit logs, the user list, and any user-facing references.
Role Select the appropriate role from the dropdown. Refer to the role descriptions above to determine the correct assignment. When in doubt, assign the least permissive role that allows the user to do their job, and escalate if needed.
Password Enter an initial password for the account. Ensure this meets the platform’s password complexity requirements. Communicate the initial password to the user through a secure channel — do not include it in the same email that contains their username.
Account Assignment (if applicable) For Partner, Distributor, and Customer roles, select the account or accounts this user should be associated with. A Partner user must be associated with at least one customer account to have a meaningful view within the platform.
Select “Register” or “Create User” to submit the form. The user can log in immediately using the credentials you have set.
Step 2: Edit an Existing User
Section titled “Step 2: Edit an Existing User”Navigate to /edit_user, or access the edit option from the user list if one is available.
The edit form pre-fills with the user’s current details. You can update:
- Name — update if the user has changed their name or if the original entry was incorrect
- Email Address — update if the user’s email address has changed; note that this also changes their login identifier
- Role — update if the user’s responsibilities have changed and they require a different access level; role changes take effect at the user’s next login
- Account Assignments — add or remove customer account associations for Partner and Distributor users
- Password — reset the password if the user has been locked out or requests a reset
Select “Save” or “Update” to apply the changes.
Step 3: Delete a User Account
Section titled “Step 3: Delete a User Account”Navigate to /delete_user or access the delete option from the user list.
Before deleting a user account, consider the following:
- Deletion is permanent. The user’s login credentials are removed and they can no longer access the platform.
- Any audit log entries associated with the user are retained — deletion removes the account but preserves the activity record.
- If the user is the sole administrator of a customer account, assign another user to that account before deletion to avoid orphaning it.
Confirm the deletion when prompted. The account is removed immediately.
Step 4: Log In as Another User (Super Admin Only)
Section titled “Step 4: Log In as Another User (Super Admin Only)”The Login As User function at /login_as_user allows Super Admin users to enter the platform as a specific user, seeing exactly what that user sees. This is used to diagnose reported issues, verify that a new user’s permissions are configured correctly, or reproduce a problem a customer has described.
To use this function:
- Navigate to
/login_as_user. - Select or search for the user you wish to impersonate.
- Confirm the action. The platform reloads in that user’s context.
- Reproduce the reported issue or verify the configuration as needed.
- To return to your own Super Admin session, look for the “Exit” or “Return to Admin” option that appears in the interface while you are in another user’s session.
Important: Actions taken while logged in as another user are executed in that user’s context. Exercise caution — any changes made during an impersonation session are attributed to the impersonated user in the audit log. Limit actions during impersonation to read-only diagnosis unless a specific change is required and agreed with the account owner.
- Set a temporary password and prompt the user to change it. When creating a new account, assign a temporary password and instruct the user to change it at first login. This ensures only the user knows their own credentials.
- Audit role assignments periodically. As organisations change, users may accumulate roles that are more permissive than their current responsibilities require. Review user roles quarterly and downgrade or remove accounts that are no longer needed.
- Never share user accounts. Every individual who needs platform access should have their own account. Shared accounts make it impossible to attribute actions in the audit log to a specific person and create compliance risks.
- Use Login As User only for diagnostic purposes. The impersonation function is a powerful diagnostic tool. Avoid using it for routine administration — all regular account management tasks should be performed through the dedicated management pages.
- Document role change reasons. When escalating a user’s role, note the business reason in an internal record. This supports compliance reviews and helps future administrators understand why the access level was granted.
Troubleshooting
Section titled “Troubleshooting”The Register User form shows a validation error for the email address. Each email address must be unique within the platform. If another account already uses the same email address, the registration will fail. Search the existing user list to confirm whether an account for that address already exists. If it does, consider whether the existing account should be updated rather than a new one created.
A user cannot log in after their account was created. Verify that the email address and password were communicated correctly to the user. Confirm the user account exists by searching the user list. If the account exists but the user cannot authenticate, reset their password via the edit user form.
Changing a user’s role did not take effect immediately. Role changes apply at the next login. Ask the user to log out and log back in to refresh their session with the updated role.
The Login As User page is not available.
This function is restricted to Super Admin users (ROLE_SUPERADMIN). If you do not see this option, your account does not have Super Admin access. Contact your Transpeye administrator.
I cannot delete a user account. If the user is currently logged in to an active session, the deletion may be blocked until their session expires. Wait for the session to expire or contact Transpeye support to force-terminate the session, then attempt the deletion again.