From bd18587e1b6fc69db168e9044a3d7cce2fc1524a Mon Sep 17 00:00:00 2001
From: Keith <keith.l.hurley@gmail.com>
Date: Mon, 18 Mar 2024 22:04:41 -0500
Subject: [PATCH] add users page

---
 FinCatch_CreateUser.qmd | 21 +++++++++++++++++++++
 _quarto.yml             |  1 +
 2 files changed, 22 insertions(+)
 create mode 100644 FinCatch_CreateUser.qmd

diff --git a/FinCatch_CreateUser.qmd b/FinCatch_CreateUser.qmd
new file mode 100644
index 0000000..c3329d4
--- /dev/null
+++ b/FinCatch_CreateUser.qmd
@@ -0,0 +1,21 @@
+# FinCatch Users
+
+## Auth0 User Authentication
+
+FinCatch uses the Auth0 (https://www.auth0.com) for authentication and authorization. At-will, user-requested new user creation is not supported. New users can be created by a tenant admin with Auth0. Users will be sent an email to verify their address and future FinCatch usage is not possible until the verification is complete. Users should also be assigned the appropiate authorization roles.
+
+## FinCatch User
+
+In addition to Auth0 user authentication, FinCatch website, FinCatchAG, and FinCatchRA users will also need a profile in the FinCatch system. This profile is meant to decouple FinCatch from the Auth0 system in case a new authentication service needs to be implemented. Upon the first login to the FinCatch website, a new Auth0 user with a verified email will be redirected to a page to create their profile. After creation of their profile, a FinCatch DataAdmin will need to log in and "Activate" their profile.
+
+## How to Create A New User
+
+1\) FinCatch administrator logs into Auth0 and creates new user. The appropiate roles (DataAdmin, DataWorker, DataSupervisor) should be added to the new user. The new user will need to be supplied their password.
+
+2\) New user will receive an email with instructions on how to verify their email address. The must complete the verification process.
+
+3\) New user should log into https://FinCatch.outdoornebraska.gov using the password supplied by the FinCatch administrator.
+
+4\) Upon logging in, the new user will be redirected to a page to complete their FinCatch profile.
+
+5\) A FinCatch administrator must login and activate the new user's profile.
diff --git a/_quarto.yml b/_quarto.yml
index 6c5a65f..27ffa7b 100644
--- a/_quarto.yml
+++ b/_quarto.yml
@@ -15,6 +15,7 @@ book:
         - FinCatch_SamplingRestrictions.qmd
         - FinCatch_DataDesign.qmd
         - FinCatch_Architecture.qmd
+        - FinCatch_CreateUser.qmd
     - part: FinCatchDE
       chapters: 
         - FinCatchDE_0_Deployment.qmd