How to manage users and API tokens
Type: How-to · Audience: Admin
Overview
Create users, assign roles, and generate API tokens for programmatic access.
Roles
| Role | Permissions |
|---|---|
admin |
Everything (create/delete users, tenants, all operations) |
edit |
Create/update tenants, node groups, machines (no user management) |
view |
Read-only access |
Steps
-
Create a user:
curl -X POST $SERVER/api/v1/users \ -H "Authorization: Bearer $TOKEN" \ -d '{"metadata":{"name":"alice"},"spec":{"role":"edit","password":"secret123"}}' -
Create an API token for programmatic access:
curl -X POST $SERVER/api/v1/users/alice/tokens \ -H "Authorization: Bearer $TOKEN" \ -d '{"metadata":{"name":"ci-token"},"spec":{"expiresIn":"8760h"}}' -
Use the token:
export REZUSCLOUD_TOKEN="<token-value>" rezusctl get clusters --server $SERVER