Skip to content

Server Security

Jump to bottom
DeclanBuckley edited this page Jan 25, 2021 · 12 revisions

Home / Developer / Server Tier / Security

Server Security Summary and web.config configuration variables definitions.

Summary.

PxStat uses Windows Authentication using an Active Directory (AD). Generally speaking, users are whitelisted on an Accounts table in the PxStat database. The user is only identified by AD username. It is assumed that collateral details (e.g. name, email, phone etc) are available in Active Directory. When the application needs user details, a call is also made to Active Directory and the AD specific data is bundled with the application data and returned to the API.

AD Configuration.

AD configuration is in web.config.

  • API_AD_DOMAIN - Active Directory Domain

    .

  • API_AD_USERNAME - Active Directory username for accessing AD.
  • API_AD_PASSWORD - Active Directory password for accessing AD.
  • API_AD_ATTRIBUTE_USERNAME - The AD attribute used to denote username.
  • API_AD_ATTRIBUTE_EMAIL - The AD attribute used to denote email.
  • API_AD_ATTRIBUTE_FIRSTNAME - The AD attribute used to denote first name.
  • API_AD_ATTRIBUTE_LASTNAME - The AD attribute used to denote last name.

Top

Requirements
Installation
Update
Database Scripts
Configuration
API
Developer
End User Guide
Data Formats
About
Clone this wiki locally