Difference between revisions of "Security setup"

From TempusServa wiki
Jump to navigation Jump to search
Line 11: Line 11:
=== Logging ===
=== Logging ===
Each entity can support the following  
Each entity can support the following  
* Access log
* Access log: User that has edited or viewed an item
* Change log (aka revisions see below)
* Status log: History of items time spent in each step
* Status log
* Change log: Copy of old data along with timestamp and user that has changed the item (see below)


'''How to:''' Each option is activated on the entity Advanced page.
'''How to:''' Each option is activated on the entity Advanced page.
'''Pro tip:''' Especially the status log can be used for setting up performance charts on dashboards, as it can give detailed information of how much time was spent in each step.


=== Versioning ===
=== Versioning ===

Revision as of 12:19, 2 September 2021

Security features

Multifactor authentication (recommended)

Geolocation blocking (optional)

Denial of service hardening (optional)

Compliance features

Logging

Each entity can support the following

  • Access log: User that has edited or viewed an item
  • Status log: History of items time spent in each step
  • Change log: Copy of old data along with timestamp and user that has changed the item (see below)

How to: Each option is activated on the entity Advanced page.

Pro tip: Especially the status log can be used for setting up performance charts on dashboards, as it can give detailed information of how much time was spent in each step.

Versioning

By default file versioning is supported on document fields.

In addition data revisions can be supported on each individual entity.

How to: Data revisions is activated on the entity Advanced page.

GDPR deletion policies

GDPR policies will enable automatic handling of stated deletion policies. The system will automatically remove or anonoumize data and files in the system.

How to:

  1. Set up an action on a entity status
  2. Check of deletion policy
  3. Choose between anonoumization or deletion
  4. Optionally select log data to also be deleted

In case you choose "anonoumization" you should define how each field should be handled

  1. Click on a field
  2. Click on Assignment
  3. Check of anoumization
  4. Optionally set value after change