<?xml version="1.0" encoding="utf-8" standalone="yes"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>Security on RIA Docs</title>
    <link>https://docs.riaproducts.com/dih/4.x.x/docs/security/</link>
    <description>Recent content in Security on RIA Docs</description>
    <generator>Hugo</generator>
    <language>en</language>
    <atom:link href="https://docs.riaproducts.com/dih/4.x.x/docs/security/index.xml" rel="self" type="application/rss+xml" />
    <item>
      <title>Authentication and Authorization</title>
      <link>https://docs.riaproducts.com/dih/4.x.x/docs/security/authentication-and-authorization/</link>
      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
      <guid>https://docs.riaproducts.com/dih/4.x.x/docs/security/authentication-and-authorization/</guid>
      <description>&lt;h2 id=&#34;overview&#34;&gt;Overview&lt;a class=&#34;td-heading-self-link&#34; href=&#34;#overview&#34; aria-label=&#34;Heading self-link&#34;&gt;&lt;/a&gt;&lt;/h2&gt;&#xA;&lt;p&gt;DIH has its own security model to manage who can login and what a user can access.&lt;/p&gt;&#xA;&lt;figure&gt;&lt;img class=&#34;lightbox-trigger&#34; src=&#34;https://docs-riaproducts.s3.us-east-1.amazonaws.com/dih-ga/images/userguidev3/security_model-diagram.png&#34; alt=&#34;&#34;&gt;&lt;figcaption&gt;&lt;/figcaption&gt;&lt;/figure&gt;&#xA;&lt;h2 id=&#34;boot-properties&#34;&gt;Boot properties&lt;a class=&#34;td-heading-self-link&#34; href=&#34;#boot-properties&#34; aria-label=&#34;Heading self-link&#34;&gt;&lt;/a&gt;&lt;/h2&gt;&#xA;&lt;p&gt;Note that the authorization as described below is only in effect if the &lt;code&gt;ria-boot.properties&lt;/code&gt; have been specified as shown in the purple block, bottom-left of the diagram.&lt;/p&gt;&#xA;&lt;h2 id=&#34;user&#34;&gt;User&lt;a class=&#34;td-heading-self-link&#34; href=&#34;#user&#34; aria-label=&#34;Heading self-link&#34;&gt;&lt;/a&gt;&lt;/h2&gt;&#xA;&lt;p&gt;The &lt;code&gt;UA_AUTH_USER&lt;/code&gt; specifies a user id, full name and a password. The password is encrypted and used to authenticate a user at login. If federated SSO or LDAP is used for authentication, the password defined on this table is ignored because the authentication would be done by the SSO provider or LDAP store. The user definition is still required because all the authorization and audit tracking is associated with this user definition.&lt;/p&gt;</description>
    </item>
  </channel>
</rss>
