World Class Security Frameworks
Data security is vitally important to us at formsflow.ai, and that is why we are excited to work with Keycloak to provide users with world-class security frameworks.
What is an Information Security Framework?
Data security depends on managing authentication and authorization.
Authentication frameworks are the processes by which you verify that a person attempting to access services and applications is who they claim to be.
Authorization frameworks allow you to give an authenticated person access to a specific resource or function within your system.
These fundamentals are at the heart of government cybersecurity frameworks and small business application security frameworks alike.
Security Frameworks in formsflow.ai
formsflow.ai utilizes the power of Keycloak to provide our users with industry-leading security frameworks to secure their organization’s data in transit and at rest. There are two key elements that set Keycloak apart and make it the perfect open-source security framework partner for us.
OpenID Connect
OpenID Connect allows web, mobile, and JavaScript clients to securely request and receive information about authenticated users and sessions. Many implementations are OpenID Certified, including authentication profiles. Check the official certification list for details.
After installation, formsflow.ai enables users to create standardized roles across products. Each role can be assigned to specific groups or given access to individual Realms.
Realms
In Keycloak, a Realm manages user authentication and authorization based on credentials, roles, and groups. Each user belongs to a specific Realm and logs in through it. Realms are separate from one another and can only manage their own users. They share a common security framework for identity and access management.
With this context, here’s what to know about how users, groups, and roles interact within formsflow.ai’s components:
Groups (and if needed, subgroups) are associated with roles
Note that there is no client for Form.io – there is no direct login capability on Keycloak for Form.io. All form administration is performed from the formsflow.ai UI
In practice, users are assigned to groups and thereby inherit the roles
Groups are also synced with Camunda, so they are available for task filtering, email notifications, and more.