Search Results

Mitigating the OWASP Top 10

An explanation of how Cloud CMS addresses each of the Top 10 OWASP topics: Mitigating-the-OWASP-Top-10.pdf

Score: 8.883635

Locking

Locking Cloud CMS locking is a "data lock" approach which is a transactional lock is taken out when the write of multiple documents begins. This is a transactional lock in the sense that it blocks other write operations against those documents and fails entirely with rollback if any of the documents fail individually. We have transactional writes for multiple documents. We have a changeset-driven versioning model where each transaction writes onto it's own changeset. N number of documents may

Score: 6.4037924

Start Workflow

Start Workflow ID: startWorkflow Starts a workflow with the given node placed into the payload. Configuration Property Type Required Default Description model text true The ID of the workflow model to be used. swimlanes object false Identifies principals to be assigned into workflow swimlanes. The structure is: { "swimlane1": ["domainId1/principalId1"], "swimlane2": ["domainId2/principalId2"] } runtime object fal

Score: 6.069399

Query

Query Cloud CMS provides SQL-like, structured query for all of your content. The platform uses MongoDB under the hood to store the JSON for your content. MongoDB offers a powerful, unmatched query engine so that you can execute complex lookups of your content to support both your editorial and runtime application needs. The platform also offers "composite" quyery operations which let you layer MongoDB queries on top of Elastic Search DSL searches and traversals around node objects. Cloud C

Score: 5.633023

Authentication Grant

Authentication Grant Type authgrant Datastore Type platform Supports authorities, permissions, transfer Why would you want to use an Authentication Grant? Here are a few reasons: Authentication Grants provide a way for you to distribute user authentication credentials without actually having to give out the usernames and passwords of your user

Score: 5.13994

Authentication

Authentication The Authentication Service provides a full authentication framework for stateless and session-based applications. It authenticates requests against back end providers and offers interpretation and parsing of request scope information to provide Single-Sign-On (SSO). Authenticated requests will have user accounts created and synchronized within Cloud CMS either automatically or as part of a registration form process. Authenticated users have Cloud CMS connectivity state managed

Score: 5.017233

CAS

CAS The CAS Authentication Provider enables the Cloud CMS Application Server to authenticate, validate tokens and load user profile information against servers that implement the Central Authentication Service SSO protocol (either version 2 or version 3). Configuration Here are all of the properties that may be configured: "auth": { "enabled": true, "providers": { "keycloak": { "enabled": true, "ssoBaseURL": "http://www.example.com/", "se

Score: 4.924704

Keycloak

Keycloak The Keycloak Authentication Provider enables the Cloud CMS Application Server to authenticate, validate tokens and load user profile information against a Keycloak Server. Keycloak API Keys To use this provider, you will To use this provider, you will first need to set up a Developers Account within Facebook and create an application therein. Doing so will give you a set of API tokens: appId - the Facebook application ID token appSecret - the Facebook application Secret token

Score: 4.835996

How can I reuse connections with the Java Driver?

The Cloud CMS Java Driver uses a thread local variable to store the authentication context it receives after connecting.  This is perhaps unusual for folks who are coming from the JavaScript world but should be very familiar for anyone who works with common JavaScript frameworks such as Spring Framework or Spring Security.

When the authentication completes, the Java Driver constructs a "Driver" object that it stores into a thread local variable using the following call:

Driver
                    

Score: 4.75013

Does Cloud CMS support Single Sign On (SSO)?

Yes, Cloud CMS supports SSO (Single Sign On) with a variety of authentication providers.  Many of these providers are offered out-of-the-box -- including providers for Keycloak, Google, CAS and more.  In addition, we allow you to implement your own SSO providers and customize the authentication handshake.

To learn more about how Cloud CMS authentication providers work, check out the following documentation: