Skip to Main Content
Cumulocity IoT - Tell us your Idea
ADD A NEW IDEA

FILTER BY CATEGORY

Authentication & Authorisation

Showing 12 of 272

Option of defining the type header in SSO Settings

In fact, OAuth 2 (and also OpenID Connect) does not specify how access tokens should look like and which format should be used. That's why I expect the greatest possible flexibility from an implementer when it comes to validating access tokens. Id...
Guest 11 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Likely to implement

Device Certificate Authentication - Support CRL/OCSP

In devicemanagement, one can onboard devices with a certificate but after onboarding, there is no possibility to authenticate with certificates. It would be a big added value for security and management of our clients, since no credentials would b...
Guest almost 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Planning / planned

OAuth 2 Client Credentials Support

Hi, We have the current situation: The primary actor in this scenario on our side is an API, not a human being. We cannot use Basic or OAuth2 Internal authentication due to security requirements of our security department. We would like to be able...
Florian Huber 12 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Clarification needed

For users created via SSO, display a more user-friendly value in the upper right corner (where the user menu is).

Sometimes the value of the User ID for users created via SSO is just a UUID value, i.e. some random string. This way it is difficult to understand which is the currently active user. Ideally a name or an email address would be displayed, similar t...
Guest almost 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Future consideration

OAuth2 authorization response should properly handled error information

Hi, When using an external OAuth2 authorization server in Cumulocity the authorization server may deny access or fail to whatever reason the authorization request. In this case, according to RFC 6479, the authorization sever will redirect the user...
Florian Huber 11 months ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Likely to implement

As Utonomy I want Intrusion detection and virus scanning

Utonomy wants to have a roadmap for this feature. Thomas is already testing a solution with PaloAlto. We need a budget for PaloAlto (3000-6000€ per month). Maybe we can ask Utonomy if they are willing to pay for that feature?
Jens Wildhagen over 3 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Partially exists

Users need to be informed once his password is changed by admin user.

Currently, user is not informed once his password has been changed by admin user. It is observed that when admin user changes password of another user in the platform, user is not informed about the operation. Detailed Steps. 1. Navigate to ...
Guest almost 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 1 Unlikely to implement

User need to have the option to cancel the changes in Authentication settings and no need to have information provided by the platform for the same

User is Forced to "log out" once authentication mode is changed and no user Indication provided to the user. When user tries to Save the modified authentication mode, user is forced to logout from the platform and not provided with any option to "...
Guest about 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Likely to implement

Map ID Token Parameters in SSO configuration

In the current SSO configuration in C8Y it is only possible to map the user ID claim from the Access token. The first issue is that if the user ID is not a human readable value, then in the C8Y header menu where the user name is displayed, the non...
Guest over 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 3 Future consideration

Ignore Case on Username Login

When adding new users, we normally copy the email address of a person and paste it directly and i have seen this cause confusion when that user logins in for the first time. Their email may be "JoeDoe@company.com", and becasue the username field i...
Guest over 2 years ago in Cumulocity IoT Platform Services / Authentication & Authorisation 0 Likely to implement