Found 512 results for "api security authorities"

The search executed in 0.002389749 seconds. That's fast.

Gitana / 3.2 / Guide / Guide / Security

Security Cloud CMS lets you define enterprise-grade access control policies across all of your content to ensure and assert that the right content is being accessed by the right people at all times. To achieve this, Cloud CMS offers a security engine that incorporates multiple levels of access provisioning. These include: A Role-based, multi-level Authorization engine that asserts Permissions on every API, service and DAO method invocation. Fine-grained, object-level access control lists for spe

Score: 27.927917

Gitana / 4.0 / Data Engine / Security / Overview

Security Cloud CMS lets you define enterprise-grade access control policies across all of your content to ensure and assert that the right content is being accessed by the right people at all times. To achieve this, Cloud CMS offers a security engine that incorporates multiple levels of access provisioning. These include: A Role-based, multi-level Authorization engine that asserts Permissions on every API, service and DAO method invocation. Fine-grained, object-level access control lists for spe

Score: 21.60085

Gitana / 3.2 / Guide / Guide / API Keys

API Keys When you sign up for Cloud CMS, you are given your own tenant. Your tenant is essentially a guarded vault of data. To access this data, you need to present two sets of credentials to the Cloud CMS server: Client Credentials User Credentials Client Credentials identify the application that is attempting to connect and User Credentials identify who is using the application. Once signed in, the User Credentials establish the security context of the authenticated user, potentially limiting

Score: 15.841923

Gitana / 3.2 / Guide / Guide / API

API The Cloud CMS API consists of an HTTP/HTTPS endpoint that uses OAuth 2.0 authentication. It supports both REST concepts and asynchronous data operations. You can access this API using any of our drivers as well as curl or any HTTP client library. Our API provides functionality that covers all aspects of content production, publishing and presentation. 100% of the functionality of Cloud CMS is accessible from the API, including: Content Models, Creation and Editing Workflow, Scheduled Publish

Score: 13.660362

Gitana / 4.0 / Self Managed / Configuration / API Server

API Server The Cloud CMS API Server is a Java application that launches inside of a Java Servlet Container. The Java application surfaces a REST API as well as backend services and DAOs to support connectivity to Mongo DB, Elastic Search and a slew of Amazon services including S3, SNS, SQS, Route 53, Cloud Front and more. Properties File Cloud CMS is primarily configured via a properties file that is auto-detected and loaded when the underlying Spring Framework starts up. This properties file is

Score: 11.994109

Gitana / 4.0 / Developers / Cookbooks / REST API Cookbook

REST API Cookbook Getting Started This guide assumes that you have already installed an HTTP client with which you will be making requests. However, it is highly recommended that you look at our language drivers and you read about the one that you will be using in your application. Connecting to Gitana Gitana uses OAuth2 to perform authentication, and as such to connect you will have to perform the authentication handshake manually to connect directly with the rest api. The specifics of this dif

Score: 11.888708

Gitana / 4.0 / Data Engine / API Keys / Overview

API Keys When you sign up for Cloud CMS, you are given your own tenant. Your tenant is essentially a guarded vault of data. To access this data, you need to present two sets of credentials to the Cloud CMS server: Client Credentials User Credentials Client Credentials identify the application that is attempting to connect and User Credentials identify who is using the application. Once signed in, the User Credentials establish the security context of the authenticated user, potentially limiting

Score: 11.404749

Gitana / 3.2 / Guide / Guide / Docker / Security Notices

Security Notices Please review the following notices for information on mitigating known vulnerabilities and our recommended upgrade paths: CVE-2021-44228 CVE-2022-22965

Score: 10.476757

Gitana / 3.2 / Guide / Guide / Authentication

Authentication Cloud CMS supports authentication via the industry standard OAuth 2.0 protocol. OAuth 2.0 is a well-recognized standard that enables client code to connect to Cloud CMS in a secure and safe fashion. This means that authorization can be achieved in such a way that client and user credentials (secret keys) are never publicly exposed. Channel-level encryption is provided by HTTPS and HTTP POST payloads are utilized to avoid exposure of credentials via request parameters or logging fa

Score: 10.424949

Gitana / 4.0 / Data Engine / Authentication / Overview

Authentication Cloud CMS supports authentication via the industry standard OAuth 2.0 protocol. OAuth 2.0 is a well-recognized standard that enables client code to connect to Cloud CMS in a secure and safe fashion. This means that authorization can be achieved in such a way that client and user credentials (secret keys) are never publicly exposed. Channel-level encryption is provided by HTTPS and HTTP POST payloads are utilized to avoid exposure of credentials via request parameters or logging fa

Score: 10.424949

Gitana / 4.0 / Data Engine / API Keys / Create new Application Keys

Create new Application Keys If no API keys exist for your desired project, you will need to create an application for the project. To create a new application simply go to Manage Project, select Applications, and then create a New Application. Once the application has been created you can view the API Keys either under Manage Project -> API Keys, or, Manage Platform -> API Keys Note: API keys should not be shared across more than one application. Therefore, create a separate Cloud CMS applicatio

Score: 10.384582

Gitana / 3.2 / Guide / Guide / Access Policies

Access Policies This section describes features that are coming in 4.0 Access Control Policy documents are JSON documents that live at the Platform level. They provide a recipe that describes the access control that should be granted to any policy holder that is assigned the policy. Users may be assigned the policy directly, via a group or via a Team. Policy Document The Access Control Policy document provides a series of Statements that declare truths about what authority rights the policy hold

Score: 9.553918

Gitana / 4.0 / Data Engine / Security / Access Policies

Access Policies Access Control Policy documents are JSON documents that live at the Platform level. They provide a recipe that describes the access control that should be granted to any policy holder that is assigned the policy. Users may be assigned the policy directly, via a group or via a Team. Policy Document The Access Control Policy document provides a series of Statements that declare truths about what authority rights the policy holder should have over resources in the system. Each State

Score: 9.553918

Gitana / 3.2 / Guide / Guide / Docker / Configuration / API Server

API Server The Cloud CMS API Server is a Java application that launches inside of a Java Servlet Container. The Java application surfaces a REST API as well as backend services and DAOs to support connectivity to Mongo DB, Elastic Search and a slew of Amazon services including S3, SNS, SQS, Route 53, Cloud Front and more. Properties File Cloud CMS is primarily configured via a properties file that is auto-detected and loaded when the underlying Spring Framework starts up. This properties file is

Score: 8.92433

Gitana / 4.0 / Developers / Cookbooks / Scripting Cookbook

Scripting Cookbook Getting Started To get started with Server-Side Scripting, please visit the Server Side Scripting page. Code Samples Here are some code samples of common data structures to help you get started. Increment a Property With this example, we want to keep track of a counter that tracks the number of updates made to a node. After a node is created, if the user clicks update ten times, we want to have a counter on the node that indicates it has been updated ten times. This script sho

Score: 8.747341

Gitana / 3.2 / Guide / Guide / Security / Authorities

Authorities Every data store and object in Cloud CMS maintains access control lists so that you can finely describe the rights of any principal in the system against it. This lets you finely tune the rights of individual users against data stores and objects down to a single permission. This access control is authority-based which means that it's applied by granting authorities (or roles) that a principal has over an object. Let's buckle down on the terminology for a moment: A Permissioned entit

Score: 8.715841

Gitana / 4.0 / Data Engine / Security / Authorities

Authorities Every data store and object in Cloud CMS maintains access control lists so that you can finely describe the rights of any principal in the system against it. This lets you finely tune the rights of individual users against data stores and objects down to a single permission. This access control is authority-based which means that it's applied by granting authorities (or roles) that a principal has over an object. Let's buckle down on the terminology for a moment: A Permissioned entit

Score: 8.715841

Gitana / 3.2 / Guide / Guide / Tree

Tree Content that is organized into folders can be retrieved using the Tree API. The Tree API lets you pull back an entire path-based folder and file structure of content within a single API call. The API call lets you specify a root node, a maximum depth to traverse down the path structure, paths that should be automatically expanded and query terms for filtering of root nodes. The Tree API is deal to support a variety of cases including: retrieval of multiple deeply-nested paths within a singl

Score: 8.319245

Gitana / 4.0 / Data Engine / Discovery / Tree

Tree Content that is organized into folders can be retrieved using the Tree API. The Tree API lets you pull back an entire path-based folder and file structure of content within a single API call. The API call lets you specify a root node, a maximum depth to traverse down the path structure, paths that should be automatically expanded and query terms for filtering of root nodes. The Tree API is deal to support a variety of cases including: retrieval of multiple deeply-nested paths within a singl

Score: 8.319245

Gitana / 3.2 / Guide / Guide / User Interface / Security

Security Create a new Role Create a new Team Add a User to a Project

Score: 8.181071

Gitana / 4.0 / Self Managed / Monitoring / Overview

Monitoring API Server with an APM The Cloud CMS API Server is a Java application that launches inside of a Java Servlet Container. As such, Application Performance Montioring (APM) frameworks such as New Relic can be used to monitor performance metrics and other run-time data. Production Performance Although APM frameworks are designed such that they do not impact production performance more than is necessary, the impact is not zero. Cloud CMS Support may, therefore, ask you to disable monitorin

Score: 8.17458

Gitana / 3.2 / Guide / Guide / Multifactor Authentication / Providers / Duo Security

Duo Security Cloud CMS supports [https://duo.com/](Duo Security) for Multifactor Authentication. Cloud CMS is not a listed in the Duo Admin Console when "Protecting" an application. Instead, use the "Auth API" type. To configure Duo Security, you will need to supply the following from the Duo "Auth API" "Details": integrationKey secretKey apiHost These values are available from your Duo Security Settings page. Service Descriptor If you're adding an Authenticator via a Service Descriptor: the Des

Score: 8.05563

Gitana / 4.0 / Data Engine / Authentication / Multifactor Authentication / Providers / Duo Security

Duo Security Cloud CMS supports [https://duo.com/](Duo Security) for Multifactor Authentication. Cloud CMS is not a listed in the Duo Admin Console when "Protecting" an application. Instead, use the "Auth API" type. To configure Duo Security, you will need to supply the following from the Duo "Auth API" "Details": integrationKey secretKey apiHost These values are available from your Duo Security Settings page. Service Descriptor If you're adding an Authenticator via a Service Descriptor: the Des

Score: 8.05563

Gitana / 4.0 / Data Engine / API / Overview

API The Cloud CMS API consists of an HTTP/HTTPS endpoint that uses OAuth 2.0 authentication. It supports both REST concepts and asynchronous data operations. You can access this API using any of our drivers as well as curl or any HTTP client library. Our API provides functionality that covers all aspects of content production, publishing and presentation. 100% of the functionality of Cloud CMS is accessible from the API, including: Content Models, Creation and Editing Workflow, Scheduled Publish

Score: 8.037036

Gitana / 3.2 / Guide / Guide / Cookbooks / REST API Cookbook

REST API Cookbook Getting Started This guide assumes that you have already installed an HTTP client with which you will be making requests. However, it is highly recommended that you look at our language drivers and you read about the one that you will be using in your application. Connecting to Cloud CMS CloudCMS uses OAuth2 to perform authentication, and as such to connect you will have to perform the authentication handshake manually to connect directly with the rest api. The specifics of thi

Score: 7.7422395