Ideon Logo
Ideon

User Management

Registration

Ideon supports flexible registration modes controlled by the system administrator.

Registration Modes

  1. Public Registration: Anyone can create an account via the signup page.
  2. Invite Only: Registration is disabled for the public. New users can only join via an invitation link sent by an admin or project owner.
  3. SSO Only: Registration is restricted to users authenticating via configured SSO providers.

Sign-up Methods

  • Email & Password: Traditional sign-up.
  • Magic Link: Passwordless login via email.
  • SSO (Single Sign-On):
    • Google
    • Discord
    • Slack
    • GitLab
    • Microsoft Entra ID (Azure AD)
    • SAML Enterprise SSO: Corporate login via Okta, OneLogin, etc.

Authentication Security

  • Passwords: Secured using Argon2 hashing.
  • Sessions: Stateless JWT (JSON Web Token) sessions.
  • Rate Limiting: Brute-force protection on login endpoints.

Profile Management

Users can manage their profile from the Account Settings:

  • Avatar: Upload a profile picture.
  • Display Name: Set a public display name.
  • Color: Automatically assigned based on your username. Used for your cursor/presence in multiplayer sessions.

Git Credentials (PAT)

To display statistics for private repositories or to avoid API rate limits, you must configure Personal Access Tokens (PAT).

Configuration Location

  1. Go to your Account Settings (click your avatar in the bottom-left corner).
  2. Scroll down to the Git Providers section.
  3. Click Add Token.

Supported Providers & Scopes

Ideon supports GitHub, GitLab, Gitea, and Forgejo. Below are the required permissions for each.

GitHub

  • Host: github.com (or your Enterprise Server domain).
  • Token Generation:
    1. Go to GitHub Settings > Developer settings > Personal access tokens.
    2. Select Tokens (classic) (recommended for simplicity).
    3. Generate a new token with the repo scope (for private repos) or just public access.
    4. Copy the token starting with ghp_.

GitLab

  • Host: gitlab.com (or your self-hosted instance domain).
  • Token Generation:
    1. Go to User Settings > Access Tokens.
    2. Create a token with read_api scope.
    3. Copy the token starting with glpat-.

Gitea / Forgejo

  • Host: Your instance domain (e.g., git.example.com).
  • Token Generation:
    1. Go to Settings > Applications.
    2. Under "Manage Access Tokens", generate a new token.
    3. Ensure it has read:repository permission.

Self-Hosted Instances

Ideon fully supports self-hosted instances of GitLab, Gitea, and Forgejo. When adding the token, simply enter the domain of your instance (e.g., git.corp.net) in the Host field. Ideon will automatically detect the API endpoints.