Administration
Use Forte to manage your project's users, review activity, and control access.
User administration is part of Forte's server-side API. Use the Projects methods for these operations. They require FORTE_API_TOKEN and must run in your backend. End users manage their own accounts through the client-side API.
User states
Every user in your project has one of three states:
| State | Description |
|---|---|
| Active | The user can authenticate and interact with your services normally |
| Suspended | The user is temporarily blocked from authenticating. Existing sessions are invalidated |
| Deleted | The user is permanently removed, along with all sessions and data |
You can suspend or delete a user from the Users dashboard or API.
In live projects, the hard-delete action isn't available. Use the Suspend action to deactivate a user while retaining their record. Permanent, immediate deletion is only available in Sandbox (Test) Mode projects.
Manage users in the console
The Forte Console includes a user management dashboard where you can:
- View all users in a project with their contact methods and state
- Search and filter users by email, phone number, or state
- Suspend or reactivate users
- View a user's session history and active sessions
- Inspect contact methods and their verification status
Click any user below to view their details and audit trail. Try suspending and reactivating a user to see how state changes are tracked.
All Users
| User ID | Contact | State | Last Active | Created |
|---|---|---|---|---|
| usr_a1b2c3 | jane@example.com | ACTIVE | Mar 14, 10:32 AM | Jan 5, 2026 |
| usr_d4e5f6 | +1 (555) 123-4567 | ACTIVE | Mar 13, 08:15 PM | Feb 12, 2026 |
| usr_g7h8i9 | alex@startup.io | SUSPENDED | Feb 28, 11:45 AM | Dec 20, 2025 |
| usr_j0k1l2 | maria@company.com | ACTIVE | Mar 15, 09:01 AM | Mar 1, 2026 |
| usr_m3n4o5 | +44 7911 123456 | DELETED | Jan 10, 03:22 PM | Nov 8, 2025 |
| usr_p6q7r8 | dev@example.com | ACTIVE | Mar 12, 02:48 PM | Feb 25, 2026 |
Review audit trails
Forte logs user actions automatically for security monitoring and compliance. Every significant event records a timestamp, user ID, and action type.
Tracked events include:
- User created
- User suspended
- User deleted
- Contact method added
- Contact method removed
- Contact method verification code sent
- Contact method verified
- User login
- User logout
You can access audit logs from the Console dashboard and filter them by user, action type, or time range.
Sandbox-only capabilities
Sandbox (Test) Mode projects unlock user management capabilities that aren't available in live projects:
- Hard-delete users — Permanently remove a user and all associated data. Use this to reset state between test runs.
- Override contact methods and verification — Set a user's email or phone number and mark it as verified without sending a code.
- Fixed test OTP codes — Assign a fixed one-time code to a
555test number or reserved-test-domain email so automated tests can complete verification, sign-in, and MFA flows deterministically, with nothing actually delivered. See Contact Methods → Fixed Test Codes.
Next steps
- Set up Authentication methods for your users
- Learn about Contact methods and verification
- Understand Sessions and token management