Was this document helpful?

05/10/2017 05:24:26 by Rev: 1

See summary information about this document

Summary
Learn how to secure your application or websites. Use Security Level and Roles to protect your information.

This is the most current version of this document

Website and apps security in Goodbinder is extremely flexible. You can establish security in a few different ways: the first is at the page level; then at the ActionArea level. Security level can only be applied to a page, while the ActionArea can have both its Security Level and Role set. The list below define the Security Level which you may use within your application.

NoAccess

When a page is set to this, this page is inaccessible to anyone that is not in Design Mode. To get in this mode, the user account must have a Security Level of either Developer or Manager.
When set in an ActionArea, and as long as the page is accessible, the element and all its children (additional ActionArea or HTML content) is not visible to a user that are not in Design Mode.

Reader

This is the Security Level to set when a page should be accessible to everyone on the internet. Security restrictions are not checked as it is understood it is a public page; although ActionArea on the page may restrict its content by selecting at a higher Security Level.

Author

This Security Level is usually set where a document grants a user with the same level the ability to create content with that document, but not edit them after it is initially saved. It can also be applied to pages and ActionArea to set the Access Control List (ACL) rights are a higher level than normal (Reader).

Editor

This Security Level grants a user author and editing rights over documents that they and others create; when the document is enabled with the AuthorShipAndEditing attribute. This level may also be applied to pages and ActionArea to limit access to users who have a Security Level less that what it asks for.

Developer

This is the minimum Security Level allowed for a user to have access to the in Design Mode tools. When a user account is set at this level, they will see a triangular icon on the left middle section of the web browser. This is a clickable icon that will either allow the user to enter in-context editing (Design Mode) or exit out of it. This Security Level can also be applied to pages and ActionArea. When applied, the user must have at a minimum, this same security level to access the page.

Manager

The maximum Security Level allowed within the Goodbinder platform. it has all the privileges of the Developer Security Level. Below are some of the features of user accounts set at this level.
Ability to create new applications and assign domains to that application.
Cannot be locked out of a page.
Configure database shard to assign what data source node the application will use.
Manage users and the overall system.
Creating Roles.

To learn more about using roles, click here on Assigning Roles to ActionArea and Protecting Data.

Tags:

Contributors to this page:

Last updated by:

1. Goodbinder's primary data and servers are hosted on Amazon Web Services (AWS) Americas Region. Currently, there are no plans of deploying new assets to EU as (GDPR) does not require physical servers in the EU.

2. Amazon Web Services is an industry leader in cloud computing with safeguards in place to help and protect customer privacy. For the details of security and privacy measures taken, please visit AWS Cloud Security page.

3. For the list of all security accreditations granted to the data center we use, please visit AWS Compliance Program page.

4. EU Data Protection: At this time, Goodbinder does not use sub-processors. The Controller's (You) data is effectively protected under AWS Cloud Security environment. Our data Controller (You) can terminate your account and data at any time from the profile dashboard. Goodbinder intends to remain GDPR compliant.