Authentication

The authentication process on the Smart Trading Cloud Repository is designed in a way to prevent third-party users from accessing the data you store. All your data is protected by the Smart Trading Account that has some substantial advantages, such as:

• Single sign-on that allows you to login to the Smart Trading Account once and access other Edifecs applications without having to enter your credentials again.
• Standard protocols, OAuth 2.0 and OpenID Connect support. The Smart Trading Account does not store or release your password. Authentication is based on the opaque tokens exchange that do not have any information about your identification and ensures safe authorization data transfers.
• Fine-grained authorization that enables object-level security and allows you to manage access permissions and exactly define the access policies you need.

On your request, Edifecs can start working on the following extra services to provide you with even more secure authentication process:

• Two-factor authentication that requires a combination of two separate factors to confirm user's identity and ensures that only you can access your user account. This improves the security of your data stored in the Smart Trading Cloud Repository.
• Ability to manage your login sessions and view the history of your user account activities.
• Connection to the Active Directory database through LDAP.
• Login with social network accounts to make your authentication more convenient.

Note that if a certain user leaves the company and there is a need to stop user's access to the company's artifacts, it is possible to re-assign all the artifacts to another user within the same organization or to an administrator if there is no suitable user at the moment.