Learn about user management in the backend panel.
The user management for the backend panel works with administrators where the
Backend\Models\User model is the container that hold all the important information about a user. It includes features like roles, groups, permissions, password resets and sign-in throttling. Plugins can also register permissions that control access to the features in the backend.
# Backend User Helper
BackendAuth facade can be used for managing administrative users, which primarily inherits the
October\Rain\Auth\Manager class. To register a new administrator user account, use the
$user = BackendAuth::register([ 'first_name' => 'Some', 'last_name' => 'User', 'login' => 'someuser', 'email' => 'firstname.lastname@example.org', 'password' => 'changeme', 'password_confirmation' => 'changeme' ]);
BackendAuth::check method is a quick way to check if the user is signed in. To return the user model that is signed in, use
BackendAuth::getUser instead. Additionally, the active user will be available as
$this->user inside any backend controller.
// Returns true if signed in. $loggedIn = BackendAuth::check(); // Returns the signed in user $user = BackendAuth::getUser();
You may look up a user by their login name using the
$user = BackendAuth::findUserByLogin('someuser');
You may authenticate a user by providing their login and password with
BackendAuth::authenticate. You can also authenticate as a user simply by passing the
Backend\Models\User model along with
// Authenticate user by credentials $user = BackendAuth::authenticate([ 'login' => post('login'), 'password' => post('password') ]); // Sign in as a specific user BackendAuth::login($user);
User groups use the
Backend\Models\UserGroup model and are an organizational tool for grouping administrators, they are not related to user permissions and are strictly for organizational purposes, such as notifications.
For instance, if you wanted to send an email to all users that are in the group
Head Office Staff, you could find the user group along with the users in that group.
$staff = UserGroup::where('code', 'head-office-staff')->get()->users; Mail::sendTo($staff, 'author.plugin::mail.important_notification');
# Change Backend User Password
october:passwd command allows the password of a backend administrator to be changed via the command line. This is useful if you are locked out of your October CMS install, or for changing the password for the default administrator account.
php artisan october:passwd username password
For the first argument you may pass either the login name or email address. For the second argument you may optionally pass the desired password, otherwise you will be prompted to enter one.