Versions Compared

Old Version 11

changes.mady.by.user Hugo

Saved on

compared with

New Version Current

changes.mady.by.user Andrew

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

SSL

Enabling SSL would ensure that communication between the end user's browser to be server is secure. Please see Setting Up SSL on Tomcat to learn more.

Info
titleWhat is SSL?

SSL (Secure Sockets Layer) is the standard security technology for establishing an encrypted link between a web server and a browser.

...

Warning
titleWithout SSL

Without the use of SSL between the end client and the server, any data sent between these 2 parties will be susceptible to data sniffing by hackers as the data packets travel from end to end.


Domain Whitelist for API Calls

Refer to API Domain Whitelist in Settings to whitelist domains that are consuming Joget's APIs.

Info
titleAdvantage

By enabling this option, only servers white listed are able to communicate with the server.

Directory User Access Control

Maintaining good password policy management would ensure that user's password is kept safe. Security Enhanced Directory Manager is recommended to be used. The Security Enhanced Directory Manager features enhanced security and control on user management.

Enabling Multi-Factor Authentication using TOTP is also an added strength to it.

Info
titleAdvantage

By enabling this option, this will increase security of the user's login information.

Warning
titleWithout SSL

Without the use of SSL between the end client and the server, login information will be sent in non-encrypted, clear text to the end server.

Process Start White List

Make use of this feature located under Map Participants to Users to limit on who can start a process instance.

Domain Whitelist for API Calls

Refer to API Domain Whitelist in Settings to whitelist domains that are consuming Joget's APIs.

Userview Menu Permission Control

...

Read more at Permission Control.

Directory User Access Control

Maintaining good password policy management would ensure that user's password is kept safe. Security Enhanced Directory Manager is recommended to be used. The Security Enhanced Directory Manager features enhanced security and control on user management.

Enabling Multi-Factor Authentication using TOTP is also an added strength to it.

Password Encryption

During application design, any sensitive information such as password may be encrypted for security purpose. You may change the key and salt used in a Joget Workflow server to further enhance its security.

...