Account settings
Logto provides multiple ways to let users manage their account and profiles stored in Logto.
Use prebuilt Account Center UI (Recommended)
Logto provides a prebuilt Account Center UI that offers ready-to-use pages for end users to manage their account settings. This is the fastest way to add account management to your application.
Key features:
- Zero development effort: Ready-to-use pages that work out of the box.
- Consistent experience: Matches the look and feel of Logto's sign-in experience.
- Security built-in: All verification flows and security measures are handled automatically.
- Full functionality: Supports updating email, phone, username, password, and MFA settings.
Learn how to integrate Logto prebuilt Account Center UI into your application.
Use Account APIs
Logto's Account APIs are ready-to-use, front-end endpoints that let end users securely view and update their own information with built-in permission checks. Use this when you need to build a custom account settings page with your own UI.
Key features:
- End-user settings: Users manage their own sign-in identifiers and credentials, social accounts, MFA methods, and profile data.
- Client-side integration: Designed for safe, direct use in your front-end.
- Full customization: Build your own UI while leveraging Logto's secure APIs.
- Permission control: Toggle which Account APIs are enabled via Management API settings.
Learn how to use the Account APIs to build your own custom account settings page.
Use Management APIs
The Management APIs form Logto’s core administrative interface, accessible only to admins or back-end services. They deliver maximum flexibility and full CRUD control over every user account and allow you to build custom management tools. If you need a fully custom self-service portal or nonstandard user-management features, you can expose selected Management API endpoints behind your own “Account API” layer and secure them with your business’s auth logic.
Key features:
- Admin-only access: Intended for developers and back-office systems
- Full user lifecycle: Create, read, update, delete, suspend, or restore accounts
- Advanced operations: Generate personal access tokens, impersonate users, connect OAuth apps, customize workflows.
Learn more about how to use the user Management APIs to build your own account settings page.
Comparison of account settings options
| Feature | Prebuilt Account Center UI | Account APIs | Management APIs |
|---|---|---|---|
| Intended user | End users | End users | Admins / Developers |
| Access context | Redirect to Logto-hosted pages | Client-side / front-end | Server-side / back-end |
| Permission model | Toggle which fields are enabled via Account center settings | Toggle which Account APIs are enabled via Management API | Fully customizable by developers |
| Supported features | Update: email, phone, username, password, MFA (TOTP, passkeys, backup codes) | View, update, and delete: username, email, phone, password, social accounts, MFA, profile | All basic settings + Delete/suspend/restore account, Personal access tokens, user impersonation, connect OAuth apps, etc. |
| UI customization | Inherits sign-in experience branding | Full customization (build your own UI) | Full customization (build your own UI) |
| Setup complexity | None (just link to prebuilt pages) | Low (use APIs with your UI) | Medium to high (requires custom implementation) |
| When to use | For the fastest way to add account management without building custom pages | When you need custom UI but want to leverage Logto's secure APIs | When Account APIs don't meet your needs. E.g., for complex account deletion logic, high-risk actions, or building back-office tools |