Академический Документы
Профессиональный Документы
Культура Документы
of
WISE-PaaS SSO
2018 09 28
Wenwen Zhou
WISE-PaaS SRE
Agenda
Tenant creates a user
Tenant manages a user’s role
Tenant manages the SRP scope of a user
Tenant invites the users of another Tenant
User statuses
Tenant disables or enables a user
SSO user roles
admin
– An admin has the highest level of privilege, authorized to manage all
organizations, tenants, and developers. But to safeguard tenants’
resources, the admin is not allowed to access their apps.
tenant
– A tenant manages at least one organization, as well as the user
accounts, apps, and services of the organization.
developer
– The main task of a developer is to build apps. This role is created by a
tenant and can manage services within authorized spaces.
SSO user roles (cont.)
srpUser
– This role is created for and managed by apps. An app uses srpUsers to manage the
identities of all WISE-PaaS users and assigns the users its scope to grant them
access.
Accounts->Users->+
Typical scenarios:
Accounts->Users->+