Skip to main content
Skip table of contents

Account and login

About Accounts

Account ID

  • Account ID is an absolutely unique identifier of account. This means that there cannot be users with same IDs across all events and clients.

  • Account ID is assigned automatically as soon as an account is saved.

Account External ID

  • Account External ID can be used for data transmission between ExpoPlatform and other third-party instances.

  • It can be set with the /api/v2/account/set endpoint.

Account Category

  • Account category management is located in the admin panel at /admin/registration/categories.

  • More info about participant categories can be found here.

  • The full list of event categories can be seen in the permission matrix as well (/admin/permissionRelations).

  • Category can be assigned via API, using import or during registration (the "Category" form field).

  • If no category selected for the account then the Default category will be assigned to the account.

  • Team members inherit the category of their Exhibitor

Account Role

  • Possible roles:

    • Visitor – the most basic human account role.

    • Speaker – the role is assigned to users who are added to the Speakers list at /admin/events/speakers.

    • Moderator – the role is assigned to users who are added to the moderators list at /admin/events/moderators.

    • Team Member – visitors who are exhibitor Team Members as well

    • Buyer – users of the category which is marked with the "Is buyer" toggle

    • Guest – not a role but is used for unlogged users

  • One user can have multiple roles, for example:

Login Options

Login Via Activation Link

  • User receives the activation link in an email as soon as his account is created/verified/approved, etc.

  • When following the link that user becomes logged in instantly.

  • This works every time the link is followed

Login via OTP

  • OTP is One Time Password

  • To enable OTP logination you need to enable the OTP functionality in the admin panel at /admin/general/settings.

  • When enabled, a login pop-up will request the user's email, instead of email and password. After entering the email and submitting the form, an OTP flies out to the entered email address

  • OTP is valid for 120 minutes after being generated

  • Organizers can also generate OTPs in the admin panel as shown here.

Login using system generated password

  • Together with the activation link, the user also receives his login and password

  • These can then be entered in the regular login pop-up/page

  • The user can be forced to change the system generated password by enabling the "Force password change on first login" setting at /admin/registration/settings.

Important clarification on the password login flow:

The system-generated password only works after the account has been activated. The wording above ("These can then be entered in the regular login pop-up/page") implies the password can be used standalone, which is not the case for most accounts.

Account status determines behaviour, not account creation method:

  • Self-registered accounts (frontend): Created with registered status. The activation link must be clicked at least once before the password can be used. Until activation, the password will not work on the regular login page.

  • API-created accounts (default): Also created with registered status — same as frontend registrations. The password will not work until the account is activated.

  • API-created accounts with explicit ACTIVE status: The status can be set to ACTIVE via API during creation. In this case, the account is pre-activated and the password works directly without needing to click the activation link.

  • Admin-created accounts: Depends on the activation status at the point of creation — verify per case.

Key takeaway:

Account creation method alone does not determine whether the password is usable. The account's activation status is what matters.

API integrations that want password-login to work out-of-the-box must explicitly set status = ACTIVE during account creation — it is not the default.

This distinction matters because it is the root cause of many "I can't log in with the password you sent" support tickets. For most accounts (frontend OR default API), the activation link is the de facto first login method — not the password.

First Login Page Redirection Setup

  • In the admin panel at /admin/registration/settings there are settings for selecting where to redirect users after login.

  • These settings are available for Team Members and for all other human accounts (called "Visitors").

Unlike Visitors, Team Members have an additional option for Exhibitor Manual, which is not relevant for anyone other than Team Members.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close