All GAM Authentication scenarios include the possibility of entering a Username and Password and validating this data against an existing DB. Likewise, this DB, can be hosted in the application’s own database or in standalone manner, according to the desired combination. Both options will depend on the selected way to use it or the company’s or client’s policies.
The modes to which the GAM can be applied depend on the environment for which applications are developed or implemented. The options available are Web and SD.
Scenario 1 – Authentication in Web Applications#
Prompt for a username and password in a web screen, validating this data against an existing DB and providing the possibility to create new users with their corresponding passwords.
There are different possible scenarios, the following are some of them :
Applications where all their objects are private:#
GAM use Example: Private web application
Public Applications with some private objects:#
GAM Use Example: Public Application With Some Private Components
Scenario 2 - Conversion from the traditional security mechanisms to GAM#
If you already have your application which implements security in the traditional way, there are some tips to take into account in order to start using GAM. See How to map Application users to GAM users in existing applications.
Scenario 3 - Authentication in Smart Devices Applications#
At present, the importance of productive applications running on smart devices (SD) cannot be understated given their explosive growth. However, even though developing applications with GeneXus for SD is relatively simple, we can't think of a productive, professional and reliable application without any security features. One of the reasons why GeneXus includes GAM by default is the ability to quickly implement security for SD applications.
Like in Web Applications, in SD Applications one possible scenario is such that all of the SD objects are private. In another scenario only some objects are private, and the other have public access.
See the following for details:
Scenario 4 - Integrate with other applications, authenticate against the user´s repository of an external application.#
See GAM External Authentication Type
Scenario 5 - Interact with REST Web Services which are private#
In addition to building web applications and SD applications, GenXus users can build REST web Services using GeneXus X Evolution 2. Using GAM, this web services will be private and only authorized users will be able to execute their methods.
See HowTo: Develop Secure REST Web Services in GeneXus for details.
Scenario 6 - More than one application connecting to the same GAM repository#
It´s a usual scenario, where many applications of the same company for instance, use the same repository.
See HowTo: Using the same GAM Database by different applications.
Scenario 7 - GAM Multiple Repositories Scenarios#
Take as an example the scenario where a company has n branches, the same application runs in the different branches, but users have different privileges depending on the branch where the application runs. In this case the GAM database used will be only one, in order not to duplicate users information (and ease maintenance), but different roles have to be assigned to users depending on the branch where the application runs, so it's necessary to define multiple Repositories in GAM database.
See GAM Multiple Repositories Scenarios for details.
GAM Authorization Scenarios