Ins-and-outs of BRMS Authentication.

Overview

GoRules Business Rules Management System (BRMS) offers robust and flexible authentication mechanisms to ensure secure access control. Understanding these methods is crucial for developers implementing GoRules BRMS in their applications. This documentation provides an overview of two primary authentication methods: Passwordless Authentication using Email and OpenID Connect (OIDC) with Azure or Okta.

📘

We never handle or store passwords. We strongly suggest setting up OIDC instead of using passwordless authentication for maximum security in larger organisations.

Passwordless Authentication Using Email

Concept and Advantages

Passwordless authentication is an innovative approach that enhances security and user experience by eliminating the need for traditional passwords. In GoRules BRMS, this method utilizes a 6-letter activation code sent via email for each login attempt.

Security Features

The use of a single-use, time-limited activation code adds an extra layer of security. It reduces the risk of brute-force attacks and phishing, as there's no static password to be compromised.

Practical Scenarios

This method is ideal for smaller organisation. It's useful for environments where high security is paramount and for users who prefer the convenience of not remembering passwords.

OIDC Authentication with Azure and Okta

Brief

For a more integrated enterprise-level authentication, GoRules BRMS supports OIDC, compatible with well-known identity providers like Azure and Okta.

Integration Highlight

The integration involves configuring GoRules BRMS to authenticate users through Azure or Okta, leveraging the existing enterprise identity infrastructure.

Practical Scenarios

OIDC is recommended for organizations already using Azure or Okta for centralized user management and seeking to maintain a consistent authentication experience across applications.