J
jmls
Guest
we do indeed have something creative in a product called Secureable that we're developing and about to release. Secureable is an authorization and secrets management system that plugs into PASOE and provides a single unified source for a number of different auth systems, like OIDC, JWT, LDAP. AD, Azure etc. A user can be configured to have a number of auth sources , yet PASOE only needs to be configured once. Secureable also can generate the OEABLSecurity.properties file, as well as the oeablSecurity.csv file based on the groups and the roles that are applied to each group. For both Secureable and your PASOE application this installation this can be completely automated - which has a huge advantage when deploying your app. This ACL list can be returned to a front end through a simple API call to secureable. We have an angular SDK for the front end and are about to complete the ABL SDK for PASOE. Once you have authorized through Secureable, the PASOE session has a client-principal (CP) with the relevant user information available as properties, including the groups the user is a member of. You can also store and access secrets based on the ACL . Secrets that are encrypted at rest and not visible or accessible to other users. So storing passwords / tokens / identity becomes a simple API call Secureable can also generate single-use or time-restricted passwords for services like amazon , without the user having to know the admin or master passwords, or clientid / secretid visit nodeable more information
Continue reading...
Continue reading...