Skip to main content
Manage users and credentials for your Aiven services. Each service can have multiple users with different credentials and access levels.

List service users

Retrieve all users for a service.
project
string
required
Project name
service_name
string
required
Service name

Request example

Response

users
array
List of service user objects

Response example

Create service user

Create a new user for a service.
project
string
required
Project name
service_name
string
required
Service name

Request body

username
string
required
Username (3-63 characters, alphanumeric and underscores)
authentication
string
Authentication method: caching_sha2_password (MySQL) or scram-sha-256 (PostgreSQL)

Request example

Response

user
object
The newly created user object with generated password
The password is only returned once during user creation. Store it securely immediately.

Response example

Reset user password

Reset the password for a service user.
project
string
required
Project name
service_name
string
required
Service name
username
string
required
Username to reset

Request body

operation
string
required
Must be reset-credentials

Request example

Response

user
object
User object with new password

Response example

Delete service user

Delete a user from a service.
project
string
required
Project name
service_name
string
required
Service name
username
string
required
Username to delete
You cannot delete the primary service user (typically avnadmin). Ensure no applications are using this user before deletion.

Request example

Response

Returns 200 OK with an empty response body on success.

Get service connection info

Retrieve connection information for a service including host, port, and credentials.
project
string
required
Project name
service_name
string
required
Service name

Request example

Response

host
string
Service hostname
port
integer
Service port
user
string
Default username
password
string
Default user password
database
string
Default database name (for database services)
uri
string
Complete connection URI
ca_cert
string
CA certificate for TLS connections

Response example

Kafka user ACL management

For Apache Kafka services, you can manage user ACLs (Access Control Lists) to control topic access.

Create Kafka ACL

project
string
required
Project name
service_name
string
required
Kafka service name

Request body

username
string
required
Username to grant access
topic
string
required
Topic name or pattern (use * for all topics)
permission
string
required
Permission level: read, write, readwrite, or admin

Request example

List Kafka ACLs