Mainflux.mainflux/users

Users service

Users service provides an HTTP API for managing users. Through this API clients are able to do the following actions:

• register new accounts
• obtain access tokens
• verify access tokens

For in-depth explanation of the aforementioned scenarios, as well as thorough understanding of Mainflux, please check out the official documentation.

Configuration

The service is configured using the environment variables presented in the following table. Note that any unset variables will be replaced with their default values.

Variable	Description	Default
MF_USERS_LOG_LEVEL	Log level for Users (debug, info, warn, error)	error
MF_USERS_DB_HOST	Database host address	localhost
MF_USERS_DB_PORT	Database host port	5432
MF_USERS_DB_USER	Database user	mainflux
MF_USERS_DB_PASSWORD	Database password	mainflux
MF_USERS_DB	Name of the database used by the service	users
MF_USERS_DB_SSL_MODE	Database connection SSL mode (disable, require, verify-ca, verify-full)	disable
MF_USERS_DB_SSL_CERT	Path to the PEM encoded certificate file
MF_USERS_DB_SSL_KEY	Path to the PEM encoded key file
MF_USERS_DB_SSL_ROOT_CERT	Path to the PEM encoded root certificate file
MF_USERS_HTTP_PORT	Users service HTTP port	8180
MF_USERS_SERVER_CERT	Path to server certificate in pem format
MF_USERS_SERVER_KEY	Path to server key in pem format
MF_USERS_ADMIN_EMAIL	Default user, created on startup
MF_USERS_ADMIN_PASSWORD	Default user password, created on startup
MF_JAEGER_URL	Jaeger server URL	localhost:6831
MF_EMAIL_HOST	Mail server host	localhost
MF_EMAIL_PORT	Mail server port	25
MF_EMAIL_USERNAME	Mail server username
MF_EMAIL_PASSWORD	Mail server password for Basic authentication
MF_EMAIL_SECRET	Mail server secret for CRAM-MD5 authentication
MF_EMAIL_FROM_ADDRESS	Email "from" address
MF_EMAIL_FROM_NAME	Email "from" name
MF_EMAIL_TEMPLATE	Email template for sending emails with password reset link	email.tmpl
MF_TOKEN_RESET_ENDPOINT	Password request reset endpoint, for constructing link	/reset-request

Deployment

The service itself is distributed as Docker container. Check the users service section in docker-compose to see how service is deployed.

To start the service outside of the container, execute the following shell script:

# download the latest version of the service
git clone https://github.com/mainflux/mainflux

cd mainflux

# compile the service
make users

# copy binary to bin
make install

# set the environment variables and run the service
MF_USERS_LOG_LEVEL=[Users log level] \
MF_USERS_DB_HOST=[Database host address] \
MF_USERS_DB_PORT=[Database host port] \
MF_USERS_DB_USER=[Database user] \
MF_USERS_DB_PASS=[Database password] \
MF_USERS_DB=[Name of the database used by the service] \
MF_USERS_DB_SSL_MODE=[SSL mode to connect to the database with] \
MF_USERS_DB_SSL_CERT=[Path to the PEM encoded certificate file] \
MF_USERS_DB_SSL_KEY=[Path to the PEM encoded key file] \
MF_USERS_DB_SSL_ROOT_CERT=[Path to the PEM encoded root certificate file] \
MF_USERS_HTTP_PORT=[Service HTTP port] \
MF_USERS_SERVER_CERT=[Path to server certificate] \
MF_USERS_SERVER_KEY=[Path to server key] \
MF_JAEGER_URL=[Jaeger server URL] \
MF_EMAIL_HOST=[Mail server host] \
MF_EMAIL_PORT=[Mail server port] \
MF_EMAIL_USERNAME=[Mail server username] \
MF_EMAIL_PASSWORD=[Mail server password] \
MF_EMAIL_FROM_ADDRESS=[Email from address] \
MF_EMAIL_FROM_NAME=[Email from name] \
MF_EMAIL_TEMPLATE=[Email template file] \
MF_TOKEN_RESET_ENDPOINT=[Password reset token endpoint] \
$GOBIN/mainflux-users

If MF_EMAIL_TEMPLATE doesn't point to any file service will function but password reset functionality will not work.

Usage

For more information about service capabilities and its usage, please check out the API documentation.