Skip to main content

Customer Management

This document offers a comprehensive overview of the LoginRadius customer management system, focusing on three key areas: Customer Management, Data Management, and User Data. It explains how administrators can efficiently manage customers, outlines the data points included in customer profiles, and details how LoginRadius ensures secure and effective data management for its users.

Customer Management

The LoginRadius Admin Console's Customer Management module is a user-friendly and robust platform that empowers administrators to manage customer accounts efficiently. It enables businesses to perform essential actions such as customer creation, profile updates, account blocking, customer searches, and more. This module ensures seamless customer management and offers flexibility and control over user accounts.

Managing Customers in the Admin Console

The Customer Management module is designed to facilitate comprehensive management of customer accounts, providing administrators with all the tools they need for effective customer management. Key functionalities include:

To manage your users in the Admin Console, navigate to Customers > Manage Customers.

Adding a New Customer

Administrators can manually add new customers through the LoginRadius Admin Console. This functionality is particularly useful for assisting customers who face registration difficulties.

For more details, please refer to this documentation.

Viewing and Managing Customers

Administrators can search, view, and manage customer profiles, making it easier to access key customer information and perform administrative actions.

For more details, please refer to this documentation

Managing Blocked Customers

Blocked customers are users restricted from logging into the platform for various reasons, such as multiple failed login attempts.

For more details, please refer to this documentation.

Data Management

The LoginRadius Data Management Platform offers a range of features and tools designed to ensure the security and accessibility of your customer data. Our services provide a smooth transition to our system, enabling fast data retrieval while meeting essential security and compliance standards.

This document section will cover different aspects of Customer Data management.

Customer Data Overview

LoginRadius provides each customer with a dedicated cloud database instance to store customer profile data securely. This data is collected from various activities, including customer registration, login, custom objects, social login, social activities, anonymous login, phone login, single sign-on across web applications, and mobile app interactions. The LoginRadius Data Management Platform also integrates with external sources and APIs to enrich customer profiles.

For more information, please refer to this documentation.

Confidentiality, Integrity, and Availability with LoginRadius

LoginRadius adheres to the CIA model, which focuses on Confidentiality, Integrity, and Availability.

  • Confidentiality: LoginRadius keeps user data private and protected from unauthorized access. Sensitive information is encrypted, and access is granted only to authorized users, maintaining the confidentiality of personal and account details.
  • Integrity: The platform maintains the accuracy and consistency of user data over its lifecycle. It safeguards against unauthorized alterations, ensuring that the data remains reliable and trustworthy throughout its storage and transmission.
  • Availability: LoginRadius ensures that user data and services are always accessible when needed. Robust infrastructure, redundancy, and disaster recovery plans are in place to guarantee uptime and prevent service disruptions, ensuring users can reliably access their accounts at any time.

For more information, please refer to this documentation.

About LoginRadius Tokens

LoginRadius generates several tokens during the authentication process, each with a specific purpose. These tokens are essential for securing sessions and validating user identity. Understanding their distinct roles helps prevent confusion and ensures proper session management and secure communication.

Various Token Types Provided by LoginRadius:

  • LoginRadius Request Token: This token is returned after a successful social login (e.g., Facebook), stored in the global REQUEST variable, and used to obtain the LoginRadius access token via the Access Token API.
  • LoginRadius Access Token: The LoginRadius access token, generated from the Request Token and API key, identifies the user and social platform and enables most Social and Authentication API calls.
  • LoginRadius Refresh Token: This Token generates a new Access Token when the current one expires or becomes invalid.
  • Social Platform Token: The social ID provider token identifies the user and enables API calls; it can be retrieved via the LoginRadius User Profile API with extended profile permissions.
  • Verification Token: The Verification Token ("vtoken") is used for email verification workflows, with types ("vtype") varying by workflow.
  • LoginRadius Password Token: Password token types include SOTT for session identification during registration, Phone OTP for single-use login via SMS, and Authenticator OTP for Multi-Factor Authentication using an authenticator app.
  • JWT (JSON Web Token): Encrypted JWTs, supporting Session, Access, Refresh, and Feature tokens, offer stateless, secure, and self-contained token management with improved performance but require careful implementation for key management and misuse protection.

For more information on LoginRadius tokens, please refer to this documentation.

Data Auditing and Logging

The LoginRadius platform provides comprehensive logging for all interactions between end-users and LoginRadius applications and internal team activities. This document serves as a detailed guide to the audits and logging mechanisms employed by LoginRadius to capture various activity logs, ensuring transparency, security, and actionable insights.

There are two different types of Logs provided by LoginRadius:

  • Team Management Audit Logs: The team audit trail tracks account activities, providing administrators with detailed logs of actions, timestamps, and team member names. This ensures accountability and transparency and enhances security within organizational workflows.
    Navigate to Tenant Settings > Audit to view team audit logs in the admin console.

  • Consumer Audit Logs: LoginRadius provides real-time consumer audit logs synced with API logs, capturing user activities. These logs integrate with Audit Management/SIEM tools, offering detailed insights into API usage, helping detect security threats, and tracking user behavior for enhanced personalization.

For more information, please refer to this documentation.

Consumer Audit Logs

The LoginRadius identity platform provides consumer audit logs that automatically sync with actionable API logs, capturing end-user activities such as profile edits, account deletions, password resets, and more. In real-time, these logs can be integrated with your Audit Management/SIEM tools, like Sumo Logic, Splunk, and others. This offers detailed insights into API-level activity—specifically, who made the call, when it occurred, and how the API was used within the LoginRadius system. By leveraging this data, you can detect potential malicious activity, enhance security, and track consumer behavior to personalize user experiences.

Use Cases

  • For instance, you can use the fraud detection and prevention feature to identify and block suspicious login attempts, or the user behavior analysis feature to understand how users interact with your system and improve their experience.
  • User Behavior Analysis: Analyze sign-ins and location data to improve UX and spot abnormalities.
  • Incident Response & Forensics: Track and investigate unauthorized access or data breaches.
  • For Instance, you can use the data auditing and logging features to maintain activity logs for audits, which is a requirement for compliance with regulations like GDPR and HIPAA.
  • Performance Monitoring: Identify and address API performance issues using logs.
  • Automated Alerts & Actions: Set alerts for abnormal events and automate responses like account blocking.

For more details on Consumer Audit Logs, please refer to this document.

Browser - Data Storage & Cookies

The LoginRadius Browser Data Management & Cookies feature helps securely store user data and manage sessions. It supports secure authentication, improves user experience, and ensures compliance with relevant security regulations and standards. This system aids in managing cookies efficiently while maintaining privacy and security.

For more information, please refer to this document.

User Data

LoginRadius enables you to manage user data professionally and in a highly organized way. A user's profile can store all related information, such as email addresses, custom field values, and complex structured data.

This section provides an overview of the user profile structure, detailing the key components where various types of user data are stored. These include the normalized user profile, custom fields, custom objects, social data points, and more.

The LoginRadius user data can be stored in a structured way using the following data storage options available:

  • Normalized User Profile
  • Custom Fields
  • Custom Objects

LoginRadius Data Storage Options

LoginRadius provides flexible data storage solutions to manage user information. It includes predefined fields, customizable options, and dynamic structures to suit specific needs. These solutions ensure user data is organized, easily accessible, and adaptable, supporting standard and complex data requirements.

Normalized User Profile

Every user profile in the LoginRadius database includes a well-structured set of predefined data fields designed to store essential user information. These fields capture details such as names, email addresses, physical addresses, phone numbers, and other relevant data points. This structured approach ensures that user information is organized, easily accessible, and ready for use in various applications, including personalization, account management, and analytics.

For more information, please refer to this documentation.

Custom Fields

Custom Fields are flexible fields that you can create to meet specific requirements not covered by the predefined Standard Fields (Basic and Advanced) in the LoginRadius platform. These additional data points are tailored to your unique use cases, such as capturing specific preferences, attributes, or custom inputs during the user registration process.

If the information you need to collect is not included in the Standard Field list, you can create a Custom Field, configure it, and seamlessly integrate it into your registration forms. This feature provides a highly adaptable way to ensure user data collection aligns with your organization's needs.

For more information, please refer to this documentation.

Custom Objects

A Custom Object is a flexible, schema-less data structure that can be associated with a specific user account. It is a dynamic storage container capable of being updated in real-time with additional fields or varying data formats. Custom Objects are ideal for storing extensive amounts of user data that cannot be organized into a predefined or uniform structure, as each user's format may differ.

Custom Objects provide schema-less data storage, supporting various data types, nested structures, and multiple records within a single object. They are auto-indexed, normalized, and fully managed through REST APIs, enabling efficient queries and updates. Multiple Custom Objects can be linked to a single user profile, offering flexibility for complex data needs.

Use Cases

Here are common use cases for Custom Objects:

  • User Activity Tracking: This feature stores users' search history and on-site activities (e.g., products viewed, articles read, or bookings made) for personalized recommendations.
  • Purchase History: To enhance customer insights, maintain a detailed list of products purchased, including product IDs, descriptions, and purchase dates.
  • Shopping Cart: Capture users' shopping cart contents as a Custom Object to retrieve during checkout or when they return to the site.
  • CRM Event Tracking: Store CRM events or activity data (e.g., purchases, services) to integrate with customer systems and provide seamless user experiences.
  • Wishlist Management: This feature tracks products added to a user's wishlist, allowing easy retrieval during checkout or future visits to the site.

For more information, please refer to this documentation.

Account Linking

Account Linking enables customers to seamlessly consolidate multiple login providers into a single, unified user account. This feature allows users to initially register and log in using an email and password and later access their account through a social login provider, such as Google or Facebook. Regardless of the login method chosen, all profiles associated with that user are linked together, providing a centralized view of the user’s data and ensuring a consistent, unified experience across different authentication methods.

Account Linking streamlines the login process by eliminating the confusion of managing separate accounts for the same user. It ensures a consistent, personalized experience regardless of their login method.

For more information, please refer to this documentation.