The Architecture of CzechIdM is highly modular. The core module serves as a basic module and is essential for the application run. All other modules are usually dependent on the Core module. The Acc module users Core module services and is also very important to the application, but the application can run with the module turned off. The module takes care of user accounts on connected systems. Usually the module is ON on almost all cases. Other important module for the application is IC module. It manages the communication with the connected systems. The module is ON in almost all cases.
Except basic application modules, there are other complementary modules available.
Basic application modules | description | documentation | license | available |
---|---|---|---|---|
core | Application core - basic services, entities and REST interface | CzechIdM documentation | MIT | for free |
acc | user account management | MIT | for free | |
ic | Connectors for the communication with other systems. At the time mainly ConnId project connectors are supported. | IC (Identity Connector) module | MIT | for free |
example | Example module, servers for new developers as example | MIT | for free | |
vs | Virtual systems - manage accounts on systems via tasks | Modules - Virtual systems [vs] | MIT | for free |
rpt | Reports module. Interfaces for creating new reporst | Modules - Reports [rpt] | MIT | for free |
extras | Contains various features, which are not suited to be in any other module | CzechIdM - extras | MIT | for free |
Complementary modules | description | documentation | license | available |
reg | Users registration to CzechIdM via web GUI | Modules - User registration [reg] | paid | |
ca | Internal certificate authority with RESTful API (deprecated - use crt instead) | Modules - Certificate authority [ca] | paid | |
openam | OpenAM user authentication, user data exchange | Modules - OpenAM authentication [openam] | paid | |
pwd-reset | Password reset module. User can reset lost password via email link | Modules - Password reset [pwd-reset] | paid | |
reports | Reports module. Admins can prepare a report of users or roles and download it | Modules - Implemented reports [reports] | paid | |
crt | Managing of certificates and certificate authorities | Modules - Certificates [crt] | paid | |
sms | Sms gateway module with implementation of some gateways | Modules - SMS [sms] | paid | |
tech | Technical accounts managing | Modules - Technical accounts [tech] | paid | |
lic | PREPARING - License and hardware overview. Create list and assign to users | PREPARING | paid | |
pwd-sync | AD Domain Password synchronization to IdM (ctrl+alt+del) | TODO | paid | |
Future modules | description | documentation | license | available |
ms-teams-module | Managing Microsoft Teams | Modules - MS Teams | paid | |
ms-spo-module | Managing Microsoft SharePoint Online sites | Modules - MS SharePoint Online | paid | |
ms-exo-module | Managing Microsoft Exchange Online | Modules - MS Exchange Online | paid | |
gdpr | Archives or deletes users from IdM | Modules - GDPR |
In CzechIdM modules can be switched on and off in GUI.