Authentication
Ins-and-outs of BRMS Authentication
Overview
GoRules Business Rules Management System (BRMS) offers robust and flexible authentication mechanisms to ensure secure access control. Understanding these methods is crucial for developers implementing GoRules BRMS in their applications. This documentation provides an overview of two primary authentication methods: Passwordless Authentication using Email and OpenID Connect (OIDC) with Azure or Okta.
We never handle or store passwords. We strongly suggest setting up OIDC instead of using passwordless authentication for maximum security in larger organisations.
Passwordless Authentication Using Email
Concept and Advantages
Passwordless authentication is an innovative approach that enhances security and user experience by eliminating the need for traditional passwords. In GoRules BRMS, this method utilizes a 6-letter activation code sent via email for each login attempt.
Security Features
The use of a single-use, time-limited activation code adds an extra layer of security. It reduces the risk of brute-force attacks and phishing, as there's no static password to be compromised.
Practical Scenarios
This method is ideal for smaller organisation. It's useful for environments where high security is paramount and for users who prefer the convenience of not remembering passwords.
OIDC Authentication with Azure and Okta
Brief
For a more integrated enterprise-level authentication, GoRules BRMS supports OIDC, compatible with well-known identity providers like Azure and Okta.
Integration Highlight
The integration involves configuring GoRules BRMS to authenticate users through Azure or Okta, leveraging the existing enterprise identity infrastructure.
Practical Scenarios
OIDC is recommended for organizations already using Azure or Okta for centralized user management and seeking to maintain a consistent authentication experience across applications.
Learn how to set-up OIDC on GoRules BRMS.