Application authentication/authorization (application and cloud platform layers)

The cloud application should be registered with the cloud platform to be able to use the platform API .

An authenticated cloud application can only send commands to a set of stations for which it (the application) has permission to send to each station in the set.

Figure 5. Application authorization with cloud platform

For Sentience1.0, an application can send commands one-by-one to specific System GUIDs with assigned permissions or to all devices of specific System Type. A Sentience DevOps request should be raised to register applications and provide System Type level permissions. System GUID permissions can be assigned by user with a particular role. Permission is required to send this command: SystemCommandSend-SendSystemCommand. There is a process to manually verify your application credentials.

ACTION: Register your Cloud application
Register your cloud application with cloud platform ( Sentience) and assign required permissions for some set of stations (some `System Type` or list of `System GUID`s). The cloud application should be able to obtain application token from cloud platform IP and use this token when accessing cloud platform APIs.

ACTION: Register your Cloud application

Register your cloud application with cloud platform ( Sentience) and assign required permissions for some set of stations (some System Type or list of System GUIDs).

The cloud application should be able to obtain application token from cloud platform IP and use this token when accessing cloud platform APIs.

Application authentication/authorization (application and cloud platform layers)

Figure 5. Application authorization with cloud platform

Related Links