Search Results

UI Guide / Security / Single Sign On (SSO)

Single Sign On (SSO) Cloud CMS offers Single Sign On (SSO) Enterprise support that provides ways for users to log in using their existing business accounts. It makes it possible for your users to authenticate to Cloud CMS without having to remember or type in their credentials every time. Cloud CMS offers two Enterprise SSO features - SAML 2.0 and JWT. These are two popular SSO mechanisms that work with many commercial and open-source identity providers including: Microsoft Active Directory Fede

Score: 33.682465

Does Cloud CMS support Single Sign On (SSO)?

Yes, Cloud CMS supports SSO (Single Sign On) with a variety of authentication providers. Many of these providers are offered out-of-the-box -- including providers for Keycloak, Google, CAS and more. In addition, we allow you to implement your own SSO providers and customize the authentication handshake. To learn more about how Cloud CMS authentication providers work, check out the following documentation: Custom Authenticators a

Score: 6.9102983

Mitigating the OWASP Top 10

An explanation of how Cloud CMS addresses each of the Top 10 OWASP topics: Mitigating-the-OWASP-Top-10.pdf

Score: 5.797893

API / Data Types / Client

Client Type client Datastore Type application Supports authorities, permissions, transfer Configuration Clients maintain a configuration that you can adjust or consult as you create, update and query for them. The following table presents you the configuration properties. Property Type Default Read-Only Description key text (auto-generated) Read-Only The authentication grant key. secret text (auto-generated) The authentication grant secret. scope array ["api"] An array of strings that define the

Score: 5.7292466

API / Actions / Start Workflow

Start Workflow ID: startWorkflow Starts a workflow with the given node placed into the payload. Configuration Property Type Required Default Description model text true The ID of the workflow model to be used. swimlanes object false Identifies principals to be assigned into workflow swimlanes. The structure is: { "swimlane1": ["domainId1/principalId1"], "swimlane2": ["domainId2/principalId2"] } runtime object false Allows for manual specification of runtime properties including applica

Score: 5.657179

REST based access calls

The authentication mechanism in Cloud CMS is straight-up OAuth 2.0. While you can use any of the flows, the easiest one to begin with is "password". We've outlined a basic example here using to show our APIfirst platform in action. First, from your Cloud CMS login, select the API Keys section to list all available projects for remote access: If your project doesn't show, you can quickly create a key for it. Now click on the desired project's entry named "Node.js (

Score: 5.329909

API / Data Types / Authentication Grant

Authentication Grant Type authgrant Datastore Type platform Supports authorities, permissions, transfer Why would you want to use an Authentication Grant? Here are a few reasons: Authentication Grants provide a way for you to distribute user authentication credentials without actually having to give out the usernames and passwords of your users. Authentication Grants are constrained to specific users AND specific clients. Thus, if someone hacks around and manages to figure out your Authenticatio

Score: 5.149326

Application Server / Authentication Providers / CAS

CAS The CAS Authentication Provider enables the Cloud CMS Application Server to authenticate, validate tokens and load user profile information against servers that implement the Central Authentication Service SSO protocol (either version 2 or version 3). Configuration Here are all of the properties that may be configured: "auth": { "enabled": true, "providers": { "keycloak": { "enabled": true, "ssoBaseURL": "", "serverBa

Score: 4.9625025

API / Integrations / Amazon SNS

Amazon SNS The Amazon Simple Notification Service (SNS) is a fast, flexible, fully managed pub-sub messaging service. Use it as a cloud-based mobile app notification service to send push notifications, email, and SMS messages; or as an enterprise-messaging infrastructure. Amazon SNS provides support for Push Notification of messages as well as distribution of messages to custom HTTP endpoints or via conventional SMS, email and other messaging channels. Cloud CMS API Cloud CMS connects to Amazon

Score: 4.9350677

Node Lifecycle Events

First, you configure your tenant with the AWS credentials of an IAM user and a SNS topic ARN that you wish to publish notification events to. This can be on your own AWS account so that you can work with these notifications any way you'd like. The notifications are for a variety of node lifecycle events. The primary one is "node_invalidation" which happens whenever a node's state changes. It's an indication that anyone caching anything downstream might want to reconsider their cache state. In te

Score: 4.931111