Skip to main content

User Setup

User Setup defines registration and login behaviour for an application: which fields are allowed or required, how users can sign in, deduplication rules, and related options. In Trustdesk this lives under User Setup; applications reference a profile by ID via user_setup_id.

User Setup does not define field schemas. Field keys must first exist in Field Setup (fieldsetup-srv). User Setup only selects which of those keys apply to a given profile.

How User Setup relates to Field Setup and applications

LayerTrustdeskServiceWhat it stores
Field definitionsUser Setup → Field Setupfieldsetup-srvField keys, types, validation, scopes
Registration profileUser Setupuser-srvAllowed/required fields, login identifiers, registration rules
Application linkIntegrations → Applicationsapp-srvuser_setup_id pointing to a User Setup profile
Field Setup → User Setup profile → Application (user_setup_id)
(field keys) (allowed/required) (reference only)

Multiple applications can share one User Setup profile, or each app can use its own.

Where to configure

PlatformLocation
Trustdesk (cidaas 4.x)User Setup
Legacy Admin DashboardSettings → Registration field settings (field definitions only; profiles via API or Trustdesk)

Profile settings

Each User Setup profile (UserAppSetup in the API) has a name, optional description, and a nested user_setup object:

SettingDescription
allowed_fieldsField keys users may provide at registration or profile update (for example email, given_name). Keys must exist in Field Setup.
required_fieldsField keys required at registration. Must be a subset of allowed_fields.
allow_login_withField keys accepted as login identifiers (defaults to email when omitted).
consent_refsConsent template IDs (UUIDs) shown during registration or profile updates.
enable_deduplicationEnable account deduplication for this profile.
validate_email / validate_phone_numberTurn on format validation for email or phone fields.
auto_activate_userActivate users immediately after registration; when false, an activation flow or manual step is required.
allow_disposable_emailAllow or block disposable email domains at registration.
accept_roles_in_the_registrationAllow roles to be specified during registration.
operations_allowed_groupsGroups and roles permitted to perform operations tied to this profile.

Validation
On create and update, user-srv checks that every field key in allowed_fields and required_fields exists in Field Setup. Invalid keys are rejected.

  1. Define field keys in Field Setup.
  2. Create a User Setup profile that references those keys (Trustdesk User Setup or User Setup API).
  3. Create or update the application and set user_setup_id to the profile ID. See App management.

Linking to an application

Applications store only the profile ID — not the full User Setup document:

App fieldAPI path to resolve
user_setup_idGET /user-srv/usersetup/{id}

Configure this on the application under Integrations → Applications (Trustdesk) or via the App Configuration API.

API reference

User Setup is managed by user-srv under /user-srv/usersetup. Endpoint details, request schemas, and examples are in the User Setup API OpenAPI reference.

Access requires admin or developer roles (USERSETUP_MANAGER, USERSETUP_VIEWER, or APP_MANAGER) — there are no dedicated OAuth scopes for these endpoints.

Need help?

For assistance, visit our Support Portal.