Introduction to TimeBase Web Admin Authentication and User Authorization
Authentication
TimeBase Web Admin supports three types of authentication:
- Built-in OAuth2: a default type of authentication. We advise using it for a quick or local application launch in dev or testing mode. For production, we recommend using SSO authentication type.
- SSO
- Programmatic authentication with API keys.
One of those types must be enabled to run the application.
Authorization
You can add users and define their permissions in application.yaml configuration file or in the additional JSON file.
Supported permissions:
TB_ALLOW_READ
- user can select, view, get data stored in TimeBase streams.TB_ALLOW_WRITE
- user can write, modify, delete data stored in TimeBase streams.GRAFANA
- permission allowing Grafana plugin to query data from TimeBase.