User Management

Manage user accounts and control access to HD Homey with role-based permissions.

Overview

HD Homey supports two user roles:

Role	Permissions
Admin	Full access - manage tuners, channels, users, and settings
Viewer	Read-only - browse and watch channels only

User Roles Explained

Administrator

Full system access including:

Add/edit/delete tuners
Manage user accounts
Change application settings
Regenerate stream secrets
View all features

Viewer

Limited to content consumption:

Browse channels
Watch streams
Change own password
View tuner/channel information

First User

The first account created during initial setup automatically becomes an administrator.

Managing Users

Creating Users

Manual Creation (Admin only):

Navigate to Users → Add User
Fill in user details:
- Name (display name)
- Username (login credential)
- Password (minimum 8 characters)
- Role (Admin or Viewer)
Click "Add User"

Via Invitation (Recommended):

See User Invitations for the secure invitation link method.

Viewing Users

Navigate to Users to see all accounts:

Display Information:

Name and username
Role (Admin/Viewer)
Account status (Active/Inactive)
Creation date

Editing Users

Admins can modify existing user accounts:

Navigate to Users
Click user to edit
Update:
- Name
- Username
- Role
- Active status
Click "Update User"

Password Changes

Passwords can only be changed by the user themselves via the Profile page, not by administrators.

Deactivating Users

Temporarily disable access without deleting accounts:

Navigate to Users
Edit the user
Set Status to Inactive
Save changes

Inactive users cannot sign in but their account data is preserved.

Password Management

User Password Changes

Any user can change their own password:

Navigate to Profile (click username in nav)
Enter current password
Enter new password (8+ characters)
Confirm new password
Click "Change Password"

Admin Cannot Reset Passwords

For security, administrators cannot reset user passwords. If a user forgets their password:

Current: Admin must create a new account or manually reset via database
Future: Password reset feature planned

Security Best Practices

Strong Passwords

Require users to use strong passwords:

Minimum 8 characters (enforced)
Mix of letters, numbers, symbols (recommended)
No common passwords (not enforced - user responsibility)

Regular Reviews

Periodically review user accounts:

Deactivate unused accounts
Verify role assignments are appropriate
Remove ex-users promptly

Admin Account Protection

Use strong, unique passwords for admin accounts
Limit number of admin accounts to essential personnel
Don't share admin credentials

Troubleshooting

Cannot Create User

Common Issues:

Username already exists (must be unique)
Password too short (8 characters minimum)
Not signed in as admin
Form validation errors

Check:

Account is Active (not Inactive)
Username spelled correctly
Password is correct (case-sensitive)
AUTH_SECRET environment variable set correctly

Role Changes Not Taking Effect

Solution:

User must sign out and sign in again
Role changes require new session

Next Steps

User Invitations - Secure invitation link system
Quick Start Guide - Initial admin account creation
Stream Security - Understanding access control

User Management ​

Overview ​

User Roles Explained ​

Administrator ​

Viewer ​

Managing Users ​

Creating Users ​

Viewing Users ​

Editing Users ​

Deactivating Users ​

Password Management ​

User Password Changes ​

Admin Cannot Reset Passwords ​

Security Best Practices ​

Strong Passwords ​

Regular Reviews ​

Admin Account Protection ​

Troubleshooting ​

Cannot Create User ​

User Cannot Sign In ​

Role Changes Not Taking Effect ​

Next Steps ​