Switch to Kinde for user authenticationLink to this section
If you are currently using a different authentication tool to manage users, you can switch to Kinde pretty quickly. The method described here involves importing user details from CSV files into Kinde.
Before you begin, get a Kinde account and set it up.
Step 1: Prepare user dataLink to this section
You can export user details and data fairly easily from most auth providers. However some companies, like Auth0, require you to separately request password details for users and this can take a little while. If you’re using your own auth system, prepare data as described below.
File formatLink to this section
User data can only be imported from a CSV file. Depending on what you currently use for auth, you will need to export or prepare data in a CSV file. Note that if you use Auth0, user data comes in a CSV file and passwords are provided in a JSON file.
Kinde can import files up to 1MB, which is around 10,000 records.
Export data from Auth0Link to this section
When you export user data from Auth0, export all the default fields and add these additional ones to the export:
User data from MS Azure ADLink to this section
We recommend you set up the Azure AD connection in Kinde before you import your users.
When you import user details from MS Azure AD they must include an Azure ID so Kinde can match them to the connection you set up.
Export data from other systems or your own systemLink to this section
When exporting data from another auth system or your own system, the CSV file you export may need to be edited to ensure data is formatted in rows with some of these column headings.
Recommended minimum columns
Optional columns if applicable
id- unique to the auth provider and helps us match records as they are imported.
email_verified- account verification status: TRUE or FALSE
hashed_password- encrypted using an algorithm such as bcrypt, crypt or md5
hashing_method- tells us which algorithm was used to encrypt the password
salt- extra characters added to passwords to make them stronger
salt_position- position of salt in password string. Prefix (before) or suffix (after)
external_organization_id- the ID of the organizations you want the user to be imported into (if you have more organizations than the default one)
- Note that only the
Example CSVLink to this section
email,first_name,last_name,email_verified,hashed_password,hashing_method,external_organization_id firstname.lastname@example.org,bill,smith,TRUE,#########,md5,abc001 email@example.com,carlos,garcia,TRUE,#########,md5,abc001 firstname.lastname@example.org,lee,liu,FALSE,#########,md5,xyz002
Check for errorsLink to this section
Before importing, check the CSV for missing information or duplication. Kinde will check for some errors during import, and report these back to you.
PasswordsLink to this section
If you want your users to have an uninterrupted sign in experience as you change providers, you will need to bring their password data from your auth provider. Passwords are usually ‘hashed’ or encrypted so they cannot be read and they may be ‘salted’ as well (see above).
If you decide not to import passwords, however, it’s not a big deal. Users will be prompted to reset their password or sign in using whatever authentication methods you have chosen to set up in Kinde.
Step 2 (optional): Set up organizationsLink to this section
If you require multi-tenanting for your users, for instance if you manage a B2B business, or require separated user groups, then you need to set up organizations in Kinde first.
When you import your user records, you will need to include an external_organization_id column in the CSV, that matches the organization name in Kinde. To add a user to multiple organizations, separate the IDs with a comma.
See Add and manage organizations.
Step 3: Set up user authenticationLink to this section
Before you import your users, you’ll want to set up the authentication method they can use when signing up or signing in. The following options are available:
- Passwords - switch this option on before importing user passwords
- Passwordless - users will be sent a one-time code to sign in
- Social sign-on (SSO) - users can sign up and in using Google, Apple, etc.
For information, see Select authentication methods.
Step 4: Import usersLink to this section
Once you have your user details, you’re ready to import them.
- In Kinde, go to Users, then select Import users.
- Select the Import users tab and then select the option for your situation:
- Import from Auth0
- Import from a CSV
- Follow the on-screen prompts to upload the user data.
- If there are any errors with the import, you will be able to view them afterwards.
- Most import errors can be fixed by editing the CSV file and then re-importing into Kinde. Any records that have already been imported and have not been edited, will be ignored.
Communication to usersLink to this section
Kinde does not send any notifications or invitations to users when they are newly added to Kinde. The idea is that your users have a seamless experience that feels (almost) like it always has.
If you’ve made changes to their sign in experience — for example adding multi-factor authentication — then consider contacting your users to let them know their sign in experience will be changed.
What users might noticeLink to this section
Importing all your exisiting users and passwords should mean that your users won’t notice anything when they next sign in. This is the optimal experience. However:
- If a user changes their password after the user export and while the migration is in progress, they will be prompted to reset their password on the next sign in.
- If you have set up a new authentication method as part of the user migration (for instance, going passwordless) your users will be prompted to use the new method on sign in.