SysAdmin On-Premises

Introduction

In On-Premises instances, using the SysAdmin page you can perform different management tasks at the system level.

How to access

Go to your root domain set for tagtog (you probably use directly the IP or a custom domain) and access /-sysadmin relative path. For example: https://nlp.cia.com/-sysadmin. You will be prompted with a basic authentication panel, to enter the fields:

Username: use the subscription license name

Password: use the subscription license key

Username, email address, and registration date.

Features

User Management

The admin panel displays a list of the users registered in the instance. You can:

Create new accounts: generate a registration link to share with others or to use oneself

Edit accounts: edit the users’ accounts main information, namely, username, email, and password. 📝

Remove old accounts: remove users that for example do not use anymore the application. Remove a user from the system by clicking on the remove button .

Revoke all auth tokens: remove all existing token-based logins and registration links


Tighter authorization

Sometimes you might want to have a tighter control about what the users and visitors of your system are allowed to do. You can configure the following authorization controls using java dynamic properties. Specifically, you must properly set the environment variable TAGTOG_JAVA_OPTS with the desired configuration values as described for each point below.

Disallow visitors to create accounts

Sometimes you do not want to allow visitors to your tagtog installation creating accounts themselves. In such a case, the sysadmin is responsible to create the accounts for all the users.

Set (the java dynamic property) application.canVisitorsCreateAccounts to false (the default is true). Example:

export TAGTOG_JAVA_OPTS="${TAGTOG_JAVA_OPTS} -Dapplication.canVisitorsCreateAccounts=false"; ./tagtog_on_premises restart latest $PWD/tagtog_home

Disallow users to change their account details

In such a case, the sysadmin is responsible to edit the account details of the users.

Set application.canUsersEditTheirAccounts to false (the default is true). Example:

export TAGTOG_JAVA_OPTS="${TAGTOG_JAVA_OPTS} -Dapplication.canUsersEditTheirAccounts=false"; ./tagtog_on_premises restart latest $PWD/tagtog_home

Disallow users to recover their passwords using the "Forgot Password?" email

In such a case, the sysadmin is entirely responsible for the users’ passwords.

Set application.canUsersRequestForgotPassword to false (the default is true). Example:

export TAGTOG_JAVA_OPTS="${TAGTOG_JAVA_OPTS} -Dapplication.canUsersRequestForgotPassword=false"; ./tagtog_on_premises restart latest $PWD/tagtog_home