JWT Users

An application’s JWT users

The JWT Users tab within the Cosync Portal is used to manage JWT users within a JWT enabled application. It presents functionality to

  • See all users
  • Search for a user
  • Add a user
  • Delete a user
  • Lock a user out
  • Reset a user password
  • View all user invitations
  • View all user signups

THe JWT Users tab is similar but different from the Realm Users tab, which list all the MongoDB Realm Application user ids of users who have actually registered with the application. In principle, there is a one to one mapping between the JWT users and the Realm users. However, in the case where the developer has an application with JWT Enabled set to false, the Realm Users tab will still be populated with users, while the JWT users tab will not even be displayed.


First, the JWT Users tab gives you a view of all the JWT users in your application, when they logged in, and how they onboarded into the system - either through signup or invitation. You can also filter the results though a search feature is applied to the user handle they signed up with.

Normally, users are on-boarded into an application through a signup or invitation process. The Application Usage tab provides function to add users to an application directly from the portal by hitting the Add User button.


If the application settings defines meta data for its users, the specific meta data for a user can be seen by clicking on the Show Metadata button in the user row.


The Invitation sub tab displays all the invitations that have been issued by users in the system. If an invited user has activated their invitation and onboarded into the application, the status field is active, otherwise it is pending.


The Signup sub tab displays all the users who have onboarded into the application through the signup process.


Lastly, the User sub tab provides three icons to edit attributes of the application’s users.


From the left to right, the first icon allows the developer to delete a JWT user from their application. The second icon, acts as a toggle and enables the developer to suspend or activate a user within their application. A suspended user is not allowed to log into the application. The last icon allows the developer to reset a user’s password.