KEYCLOAK-953: add docs about enabling user to delete account functionality

2020-09-13 20:11:09 +02:00 · 2020-09-13 20:11:09 +02:00 · 73d449f2da
commit 73d449f2da
parent ab7a649238
7 changed files with 47 additions and 0 deletions
--- a/server_admin/keycloak-images/delete-account-confirm.png
+++ b/server_admin/keycloak-images/delete-account-confirm.png
--- a/server_admin/keycloak-images/delete-account-landing-screen.png
+++ b/server_admin/keycloak-images/delete-account-landing-screen.png
--- a/server_admin/keycloak-images/delete-account-page.png
+++ b/server_admin/keycloak-images/delete-account-page.png
--- a/server_admin/keycloak-images/delete-account-role.png
+++ b/server_admin/keycloak-images/delete-account-role.png
--- a/server_admin/keycloak-images/enable-delete-account-action.png
+++ b/server_admin/keycloak-images/enable-delete-account-action.png
--- a/server_admin/topics.adoc
+++ b/server_admin/topics.adoc
@ -21,6 +21,7 @@ include::topics/users/impersonation.adoc[]
 include::topics/users/user-registration.adoc[]
 include::topics/users/recaptcha.adoc[]
 include::topics/users/personal_data.adoc[]
+include::topics/users/allow-user-to-delete-account.adoc[]
 include::topics/login-settings.adoc[]
 include::topics/login-settings/forgot-password.adoc[]
 include::topics/login-settings/remember-me.adoc[]
--- a/server_admin/topics/users/allow-user-to-delete-account.adoc
+++ b/server_admin/topics/users/allow-user-to-delete-account.adoc
@ -0,0 +1,46 @@
+
+
+=== Enabling account deletion by users
+
+{project_name} can allow applications end users to delete their account through the Account Console. The functionality is not enabled by default. To enable it, the following steps needs be taken:
+
+* Enabling the "Delete Account" Required Action
+
+Allowing the user to delete their account is done through an AIA (Application Initiated Action). You need first of all to enable the action from the admin console. In Authentication menu, go to the Required Actions tab and tick the enabled checkbox for the "Delete Account" action. 
+
+image:{project_images}/enable-delete-account-action.png[]
+
+* Making sure the Account Console client has the `delete-account` role:
+
+The second requirement to enable the delete account functionality is to make sure the "account" client has the `delete-account` role. The `delete-account` role is assigned by default, unless removed by the {project_name} admin. To enable the delete account role, go to Clients menu, and click on the "account" client. 
+Then go to the roles tab, and check if the `delete-account` is among the roles. In case it is not, you can add it by clicking on "Add Role". 
+
+image:{project_images}/delete-account-role.png[]
+
+
+=== Deleting a user in action
+
+
+Once the functionlity is enabled, the user will see a new section named "Delete Account" appear in the user's account console
+
+image:{project_images}/delete-account-landing-screen.png[]
+
+
+image:{project_images}/delete-account-page.png[]
+
+
+As stated by the warning message, this action is irreversible, and it implies the deletion of all the user's data in Keycloak. 
+
+Once the user clicks on Delete, he will be prompted to enter his credentials again and redirected to the final confirmation step:
+
+
+image:{project_images}/delete-account-confirm.png[]
+
+
+
+After confirming, the user's account will be deleted.
+
+
+
+
+