---
title: User
summary: >-
A user of the Fastly API and web interface. A user is always associated with a
customer. Some information may be limited depending on access level.
url: https://www.fastly.com/documentation/reference/api/account/user
---
A user of the Fastly API and web interface. A user is always associated with a customer. Some information may be limited depending on access level.
## Data model
| Field | Type | Description |
|-------|------|-------------|
| `new_password` | string | The user's new password. |
| `old_password` | string | The user's current password. |
| `limit_services` | boolean | Indicates that the user has limited access to the customer's services. |
| `locked` | boolean | Indicates whether the is account is locked for editing or not. |
| `login` | string | The login associated with the user (typically, an email address). (Read-only) |
| `name` | string | The real life name of the user. |
| `require_new_password` | boolean | Indicates if a new password is required at next login. |
| `role` | string | The permissions role assigned to the user. Can be user, tls_viewer, tls_admin, billing, engineer, or superuser. |
| `roles` | array | A list of role IDs assigned to the user. |
| `two_factor_auth_enabled` | boolean | Indicates if 2FA is enabled on the user. |
| `two_factor_setup_required` | boolean | Indicates if 2FA is required by the user's customer account. |
| `created_at` | string | Date and time in ISO 8601 format. (Read-only) |
| `customer_id` | string | Alphanumeric string identifying the customer. (Read-only) |
| `deleted_at` | string | Date and time in ISO 8601 format. (Read-only) |
| `email_hash` | string | The alphanumeric string identifying a email login. (Read-only) |
| `id` | string | Alphanumeric string identifying the user. (Read-only) |
| `updated_at` | string | Date and time in ISO 8601 format. (Read-only) |
## API endpoints
### Get the current user
**GET** `/current_user`
Get the logged in user.
### Get a user
**GET** `/user/{user_id}`
Get a specific user.
**Parameters:**
| Name | Type | In | Required | Description |
|------|------|----|---------|--------------|
| `user_id` | string | path | Yes | Alphanumeric string identifying the user. |
### Update a user
**PUT** `/user/{user_id}`
Update a user. Only users with the role of superuser can make changes to other users on the account. Non-superusers may use this endpoint to make changes to their own account. Two-factor attributes are not editable via this endpoint.
**Parameters:**
| Name | Type | In | Required | Description |
|------|------|----|---------|--------------|
| `user_id` | string | path | Yes | Alphanumeric string identifying the user. |
### Delete a user
**DELETE** `/user/{user_id}`
Delete a user.
**Parameters:**
| Name | Type | In | Required | Description |
|------|------|----|---------|--------------|
| `user_id` | string | path | Yes | Alphanumeric string identifying the user. |
### Create a user
**POST** `/user`
Create a user.
### Update the user's password
**POST** `/current_user/password`
Update the user's password to a new one.
### Request a password reset
**POST** `/user/{user_login}/password/request_reset`
Requests a password reset for the specified user.
**Parameters:**
| Name | Type | In | Required | Description |
|------|------|----|---------|--------------|
| `user_login` | string | path | Yes | The login associated with the user (typically, an email address). |