About Users¶

Users are the people who sign in to the various RCX applications versus members, who participate in the loyalty program. Users must be authenticated and authorized to access the RCX applications.

RCX supports two modes of user authentication:

• Native - Users and integrated systems submit credentials and are issued a JWT token by RCX. You use RCX to manage user accounts, roles, and permissions.
• OIDC - RCX can integrate with an OpenID Connect (OIDC) provider, such as Okta, to provide the authentication. User accounts are managed by Okta. Roles and permissions are administered in RCX. After roles are established in RCX, they're linked to Okta groups. Autoprovisioning is also available the first time a member logs in.

User Access Control¶

To access the RCX Platform, each user must have a role and, optionally, a division.

Division-based User Permissions¶

Assignment to divisions determines users' data access:

• Division-Assigned Users: Can only view and change entities within their assigned division
• Admin Users: Can access all entities regardless of division assignment

Permission Levels¶

Each user's division assignment includes permission levels:

• Read: View entities within the division
• Create: Add new entities to the division
• Update: Change entities in the division
• Delete: Delete entities that belong to the division

See also:

• About Roles
• About Divisions
• Create Users