https://wiki.czechidm.com/ 2026-05-08T03:23:57+00:00 https://wiki.czechidm.com/ https://wiki.czechidm.com/_media/wiki/logo.png text/html 2025-08-21T20:41:19+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.czechidm.com/devel/documentation/security/dev/authorization?rev=1755808879&do=diff Authorization policies security authorization role policy default user role permissions An authorization policy determines which permissions a user in CzechIdM has. A policy is assigned to a role and everyone with this role gains the permissions determined by the policy as well. * assigning permissions in CzechIdM via ordinary roles enables managing permissions for CzechIdM by a standard mechanism text/html 2021-02-22T20:21:45+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.czechidm.com/devel/documentation/security/dev/confidential-storage?rev=1614025305&do=diff Confidential storage confidential security configuration To save sensitive data, the interface ConfidentialStorage has been created in the application. To read the data from the storage, it is necessary to know its owner (entity), and the key. The storage is currently used for: * saving the sensitive data in