IAM & Admin API
S4 includes a built-in Identity and Access Management (IAM) system with role-based access control (RBAC). When enabled, it provides multi-user authentication, fine-grained permissions, and an Admin API for user management.
Admin API
The Admin API provides HTTP endpoints for managing users, credentials, and system information. All endpoints (except login) require a JWT token with SuperUser role.
Roles and Permissions
S4 uses a simple role-based access control model with three built-in roles.
S3 Credentials
After creating IAM users, you need to generate S3 credentials (access key + secret key) so they can authenticate using standard S3 tools.