Provision applications, manage users, and mint dev and test tokens from a built-in management console — or drive the exact same operations directly through the Admin API at /admin/api. System admins manage applications; app admins manage data within a single app.
A system administrator runs the whole instance — they create, change, and delete applications, and only they can use the management operations that provision new applications. An application administrator, by contrast, is powerful only within a single application: they can see and manage all of that one application's data, bypassing the normal per-record access rules, but they have no reach into other applications or the platform as a whole. The console is built entirely on top of the same Admin API endpoints available to anyone scripting against VividEcho directly — there's no console-only capability hiding behind it.
An application is a self-contained world for one app's data, with its own isolated storage and its own access rules. Creating one hands back its API key — the value developers send as x-api-key on every request to the core API — along with settings controlling its authentication mode and whether it restricts which collections can be written to. Updating an application replaces its full settings record, and deleting one permanently destroys all of its data along with it.
Beyond provisioning, the console (and the Admin API behind it) can mint an administrator token for signing in as a system admin, or an application-admin token scoped to a single application's data, and can report whether activity logging is currently enabled on the running instance.