You can access and manage settings for an individual Identity user.
- Navigate to the Project configuration Identity Users section for your project.
- Select an individual Identity user entry from the list.
User password recovery
Section titled “User password recovery”From an individual Identity user page, use Send reset password email to trigger an email to the user, following the password recovery email template. The .ConfirmationURL variable in that email will include your project address with a recovery_token appended. If you use @netlify/identity, handleAuthCallback() processes recovery tokens automatically, or you can use recoverPassword() directly to complete the password reset.
User account metadata
Section titled “User account metadata”Information stored in this section will be set in the Identity user object. You can edit these fields by selecting Edit settings on an individual Identity user page:
- Name: Identity user editable; set under
"user_metadata": {"full_name": "Jessica Jones"} - Email: Identity user editable; triggers email change confirmation email; changes Identity user login credentials; set under
"user_metadata": {"email": "jessica@aliasinvestigations.com"} - Roles: not Identity user editable; you can assign one or more roles of your choosing, then use them to control access to areas or functionality in your project by checking this property:
"app_metadata": {"roles": ["investigator", "photographer"]}. You can also use these roles with role-based access control to restrict content by user role.
You can access this data in your code using getUser() from @netlify/identity.
Set roles programmatically
Section titled “Set roles programmatically”In addition to editing roles in the Netlify UI, you can set roles programmatically:
- At signup: Use an
identity-signupevent function to assign roles to new users automatically. - For existing users: Use
admin.updateUser()from@netlify/identityin a Netlify Function to update a user’s roles.
Role changes take effect on the user’s next login or token refresh. For more on how roles work with redirect rules, refer to role-based access control.
Did you find this doc useful?
Your feedback helps us improve our docs.