> ## Documentation Index
> Fetch the complete documentation index at: https://docs.budecosystem.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Introduction to User Management

> Control access with roles, permissions, and secure authentication

## Overview

Bud User Management helps teams control who can access the platform, what they can do, and how access is audited. It combines authentication, role-based access control (RBAC), and project-level sharing so organizations can scale safely.

```mermaid theme={null}
flowchart LR
    A[Identity Provider or Email Login] --> B[Authentication]
    B --> C[Role & Permission Resolution]
    C --> D[Module Access]
    C --> E[Project Access]
    D --> F[Audit & Monitoring]
    E --> F
```

## What You Can Manage

* **Authentication**: Sign-in, token refresh, logout, password reset.
* **Users**: Invite, view, edit, and deactivate users.
* **Roles**: Assign roles such as `super_admin`, `admin`, `developer`, `devops`, `tester`, and `user`.
* **Permissions**: Configure module-level `view` and `manage` scopes.
* **Project Access**: Grant project-scoped permissions for collaboration.
* **Governance**: Track activity and permission changes for operational review.

## Core Capabilities

| Capability       | Why It Matters                            | Example                              |
| ---------------- | ----------------------------------------- | ------------------------------------ |
| Module RBAC      | Limits access by function                 | `user:manage` for admin operations   |
| Project Scopes   | Enables controlled collaboration          | Shared project with `view` only      |
| User Types       | Separates admin and client experiences    | Admin vs client dashboards           |
| Session Security | Reduces token abuse risk                  | Refresh-token based re-auth          |
| Auditability     | Supports compliance and incident response | User lifecycle and permission events |

## How It Fits in Bud

* **Admin operators** can manage users and permissions from **User Management**.
* **Client users** can work within assigned project boundaries.
* **Security teams** can enforce least privilege and periodic access reviews.

## Getting Started

<CardGroup cols={3}>
  <Card title="Quick Start" icon="play" href="/user-management/quickstart">
    Add your first users and assign permissions
  </Card>

  <Card title="Concepts" icon="book" href="/user-management/user-management-concepts">
    Learn role, scope, and access inheritance
  </Card>

  <Card title="Guided Setup" icon="graduation-cap" href="/user-management/creating-first-user-management">
    Build a production-ready access model
  </Card>
</CardGroup>
