Does the solution use Role Based permissions/authorisation?

system · 30 July 2021 09:58

Does the solution use Role Based permissions/authorisation? Does it support multiple roles per user, if so how is the authorisation calculated?

system · 30 July 2021 09:58

The access rights to alloy is controlled using user groups. Each user group is granted permissions to perform Create/Read/Update/Delete (CRUD) operations on specific data in Alloy. If a user is allocated to a user group, they then gain the privileges of said group using an opt-in strategy. This is a common model of User Access Control (UAC) used by operating systems to control logical access to data. The access to data is controlled securely and uniformly by the web api.

Topic		Replies	Views
Is the CRUD method for authorisation used (Create, Read, Update, Delete)? API authentication , data	1	104	30 July 2021
Does the solution integrate with Azure Active Directory? General authentication	1	85	30 July 2021
Can direct access to the database be made available? Infrastructure data	1	92	30 July 2021
Can you limit user access to Alloy to specific IP ranges Infrastructure security	1	109	30 July 2021
What processes do you have to handle configuration and secrets management to ensure the integrity of Alloy through development, testing and deployment? General security	1	46	10 August 2023

Does the solution use Role Based permissions/authorisation?

Related Topics