Alauda Container Platform
  • English

    • Create User

    Users with platform administrator roles can create local users and assign roles to them through the platform interface.

    TOC

    Create User via ConsoleCreate User via YAML

    Create User via Console

    1. In the left navigation bar, click Users > User Management
    2. Click Create User
    3. Configure the following parameters:
    ParameterDescription
    Password TypeSelect a password generation method:

    Random: System generates a secure random password
    Custom: User manually enters a password
    PasswordEnter or generate a password based on the selected type.

    Password Requirements:
    - Length: 8-32 characters
    - Must contain letters and numbers
    - Must contain special characters (~!@#$%^&*() -_=+?)

    Password Field Features:
    - Click the eye icon to show/hide password
    - Click the copy icon to copy password
    MailboxUser's email address:
    - Must be unique
    - Can be used as login username
    - Associated with user's name
    Validity PeriodSet the user's account validity period:

    Options:
    - Permanent: No time limit
    - Custom: Set start and end times using the Time Range dropdown
    RolesAssign one or more roles to the user
    Continue CreatingToggle switch to control post-creation behavior:
    - On: Redirects to new user creation page
    - Off: Shows user details page
    1. Click Create
    NOTE

    After successful user creation:

    • If "Continue Creating" is enabled, you'll be redirected to create another user
    • If disabled, you'll see the created user's details page

    Create User via YAML

    You can submit the following YAML in the global cluster to create a user.

    apiVersion: auth.alauda.io/v1
kind: User
metadata:
  labels:
    auth.cpaas.io/user.connector_id: ""                    # Connector ID for external authentication (leave empty for local users)
    auth.cpaas.io/user.connector_type: ""                   # Connector type for external authentication (leave empty for local users)
    auth.cpaas.io/user.email: c18c9911faaac4e1051a599b88c62af2  # MD5 hash of the username (spec.email)
    auth.cpaas.io/user.state: active                       # User state; must match spec.state
    auth.cpaas.io/user.username: ""                         # User display name; must match spec.username
    auth.cpaas.io/user.valid: "true"                        # Whether the user is valid; must match spec.valid
  name: c18c9911faaac4e1051a599b88c62af2                   # Name of the User resource; MD5 hash of spec.email
spec:
  connector_name: ""                                        # Name of the external authentication connector (leave empty for local users)
  connector_type: ""                                        # Type of the external authentication connector (leave empty for local users)
  email: leizhuaaa                                          # User identifier; can be an email address or any unique string
  is_admin: false                                           # Whether the user is an initial admin user; must be set to false
  state: active                                             # User account state: active or inactive
  username: ""                                              # Display name for the user
  valid: true                                               # Whether the user account is valid; should be set to true