Introduction
Quick Answers to Important Questions
- For help and support, open a GitHub issue.
Helpful Resources for Getting Started with Security service
- Introduction to JSON Web Tokens
- Best Practices in Enterprise Authorization https://blog.empowerid.com/hs-fs/hub/174819/file-18506087-pdf/docs/empowrid-whitepaper-rbac-abac-hybrid-model.pdf
- Keycloak access control mechanisms
Description
Security service provides authentication, attribute-based access control (ABAC) authorization, and user management for any app: deploy anywhere, integrate with anything, in minutes.
With this service you are able to:
- Add users
- Remove a user
- Active/Deactive user
- Handle user login
- Reset the user's password with email confirmation (using built-in standalone SMTP server or external service)
- Add policy
- Add attributes for the policy
- Add attributes for users
- Remove policy
- Check if the user has access to resources under some policy
- Check if a user is authenticated
Security service provides easy integration with Keycloak. The goal of Keycloak is to make security simple so that it is easy for application developers to secure the apps and services they have deployed in their organization.
Tools
You don't need to implement registration flow in your app. You can simply use our security service to handle that.
Look at https://hub.docker.com/r/tshio/rad-admin
The Rad-Admin Service dashboard provides quick access to manage security service (user accounts, policies and API keys)
Read more on how to download and set up our security service on your environment.