User Accounts

Users are the highest-level resource in Losant. All applications and dashboards are either owned by a user or by an Organization (of which users can be members). To acquire a user account, simply sign up through our web interface.

Experience Users

Losant Users are users of the Losant Platform itself, but Losant does contain another type of user: Experience Users. Since Experiences allow you to develop and publish completely custom APIs and user interfaces with built-in user management and authentication, each Experience has its own set of Users, Groups, and Domains.

Two-Factor Authentication (2FA)

Two-factor authentication (2FA) is an extra layer of security that can be applied to an account. While not required, Losant strongly recommends enabling 2FA on your account.

With 2FA enabled, you (or a potential attacker) must have physical access to your mobile device in order to sign in to your Losant account. This means your account can be protected against unauthorized access even in the event your password has been compromised.

Authenticator Apps

To use Losant’s two-factor authentication, you must have a mobile/desktop application that supports the open TOTP standard. Here are some recommended options:

Enabling Two-Factor Authentication

To enable two-factor authentication:

  1. Navigate to the “Two-Factor Auth” link within your account sub-navigation.
  2. Select “Enable Two-Factor Authentication …“.

Enable Two-Factor Auth

  1. Use an Authenticator app to scan the QR code. The app will then begin to generate short-lived, one-time use codes.
  2. Type the code displayed within your Authenticator app into the “Two-Factor Code” field in your Losant account settings.
  3. Enter your Losant password and click “Enable Two-Factor Auth.”

Verify Two-Factor Auth

If the code expires before you click the button, you will have to enter the new code displayed within your app.

Signing In With Two-Factor Authentication

To sign in using two-factor authentication:

  1. Open your configured Authenticator App.
  2. Enter the generated one-time use code into the “Two-Factor Code” field.
  3. Fill out the along with your “Email” and “Password”.

Signin Two-Factor Auth

Disabling Two-Factor Authentication

To disable two-factor authentication:

  1. Navigate to the “Two-Factor Auth” link within your account sub-navigation.
  2. Click “Disable Two-Factor Auth.”

Disable Two-Factor Auth

Signing in With GitHub

Some users prefer to sign in to their Losant accounts using their existing GitHub accounts – that is, utilizing GitHub as an OAuth provider. This link can be established one of two ways.

During Account Creation

If you do not yet have a Losant account, you may click the “Sign In with GitHub” button at the top of the account creation screen. This will redirect you to a page managed by GitHub where you can sign in to your account and authorize Losant to view portions of your GitHub profile (such as your name and email address).

Authorize GitHub During Account Creation

Once you authorize Losant’s access, you will be redirected back to the Losant account creation screen. Your GitHub profile information will be visible at the top of the screen, and portions of the account creation form will be filled in with data from your GitHub profile. (You may change these values if you wish.)

GitHub Authorized During Account Creation

When utilizing GitHub while creating an account, the Losant account password fields become optional – as in, signing in with GitHub does not require entering a password for Losant, just for your GitHub account. If you do set a Losant account password, you may use that password (in conjunction with your email address) to sign in to your Losant account, or you may use the GitHub login flow. Do not enter your GitHub password in these fields; rather, the Losant password should be unique.

If you choose to not enter a Losant account password, you will only be able to sign in using the GitHub flow. If you revoke Losant’s access to your GitHub account, you will have to go through Losant’s password reset flow (requesting a tokenized link in your email and setting a new password) to regain access to your Losant account.

After Account Creation

You may also link a GitHub account to your Losant profile after it has been created by visiting the “Account Links” page in your Losant profile. There, you will see the option to connect GitHub to your Losant account.

Clicking this takes you to a GitHub-managed web page where you may sign in to your GitHub account and authorize Losant’s access to your profile.

Authorize GitHub After Account Creation

Once this is complete, you may sign in to your Losant account using your email address and previous Losant password, or by utilizing the “Sign In with GitHub” button on the account sign-in form.

If at any point you would like to revoke Losant’s access to your GitHub profile, you may do so one of two ways:

  • In your Losant profile, click the “Disconnect” link tied to GitHub in the “Account Links” screen.
  • Through GitHub, you may revoke access through your account’s Authorized OAuth Apps.

Signing in With SSO

Some larger enterprises have worked with Losant to integrate with their custom single sign-on (SSO) provider, which means that the user’s account is managed by the enterprise’s active directory instead of by Losant. In these scenarios, when attempting to sign in using your company email address, you will instead be redirected to your company’s SSO interface, where you must enter the password for that email address (and potentially a two-factor code).

On successful login to that service, you will be redirected back to your Losant account as a signed-in user.

SSO-Linked Losant Profile

Note: When utilizing single sign-on, the following changes occur in your Losant account …

  • You may not change your account’s email address.
  • Your email address is automatically considered “verified”.
  • You may not set a distinct password, nor enable two-factor authentication for your Losant account. Instead, all authentication is managed through the SSO provider.
  • You may not integrate your Losant account with your GitHub account.
  • You may not delete your Losant account.

Was this page helpful?


Still looking for help? You can also search the Losant Forums or submit your question there.