User Service
Component Detail
Service Layer
medium complexity
backend
1
Dependencies
2
Dependents
14
Entities
0
Integrations
Description
Backend service layer handling all user lifecycle operations including invitation-based creation, profile updates, and soft deactivation. Enforces multi-tenant scoping so Org Admins only operate on users within their organization while Global Admins can operate cross-organization. Coordinates with the authentication system for invitation token generation and email dispatch.
user-service
Responsibilities
- Orchestrate user invitation flow with time-limited token generation and email dispatch
- Enforce multi-tenant authorization using JWT organization context
- Handle user profile updates with validation and audit logging
- Manage soft deactivation and reactivation preserving audit history
- Provide paginated, filtered user queries scoped to the caller's tenant
Interfaces
inviteUser(email, organizationId, roleIds, localAssociationIds)
getUserById(userId, tenantContext)
listUsers(filters, pagination, tenantContext)
updateUser(userId, updates, tenantContext)
deactivateUser(userId, tenantContext)
reactivateUser(userId, tenantContext)
resendInvitation(userId, tenantContext)
validateInvitationToken(token)
searchUsers(query, tenantContext)
getUsersByLocalAssociation(associationId, tenantContext)
Relationships
Related Data Entities (14)
Data entities managed by this component
User
21 fields
core
User Role
11 fields
configuration
User Role Assignment
11 fields
core
Audit Logs
14 fields
audit
Contacts
24 fields
core
Local Associations
17 fields
core
Notification Settings
17 fields
configuration
Organizations
25 fields
core
Refresh Tokens
20 fields
core
Sessions
16 fields
core
User Local Associations
11 fields
core
User Role Assignments
12 fields
core
User Roles
13 fields
core
Users
26 fields
core