DFE 2.1.0 - Security
- Martin Ulisse
Owned by Martin Ulisse
Mar 05, 2021
Loading data...
This section describes how security is mapped between Digizuite and Episerver.
Introduction
The API connection to the DAM is running the secure protocol (HTTPS). The username and password is what provides Episerver access to the DAM web services. If the user requires additional security, there are different possibilities to choose between, for example:
- configuring IP restrictions on the communications between Episerver and the DAM
- limiting the Episerver user in the DAMto only access content published to the Episerver channel.
Roles
In the configuration there is a mapping of DAM roles and Episerver roles. When a DAM asset metadata is returned to Episerver, there happens a real-time mapping of access rights. It means that only Episerver users with read access to the asset can see it (typically everyone), and only Episerver users with write access can edit metadata and upload new assets (typically editors).