Identity and Access Management
A set of services responsible for managing Identities and access within our platform.
Last updated
A set of services responsible for managing Identities and access within our platform.
Last updated
Security is critical to web services. All our API endpoints only respond to authenticated requests.
A request is considered authenticated when it carries a valid authentication token. Such a token can be requested from the authentication service by exchanging user login credentials. After acquiring an authentication token, requests to other ExH services can be made by including this token in the request authorization header.
The authentication service supports both oAuth 1.0 and oAuth 2.0 authentication mechanisms.
The service endpoints that a user is allowed to use depend on the required permissions for a specific endpoint and the permissions that a user has been given through the roles assigned to that user (see below).
The required permissions for each endpoint can be found in the corresponding API reference documentation (Swagger)
Example: To enable a user to trigger a task within the Task service, looking at the API specification they need to have the CREATE_TASKS permission