On the configuration file you can find the security section, in this section option like the encryptionKey, inactive timeout, roles and authentication can be found:

• enable ( type=boolean | default= false | required ) - Enables the server authentication, including login page (if need)
• inactiveInterval ( type=integer | default=600 | optional ) - Defines the timeout for an inactive session, after the timeout is trigger, the session will expire and the user will need to login again
  • Every action perform by the user, restarts the timeout
• encryptionKeyFile ( type=string | default=./bin/saga.ek | required ) - Location of the file holding the encryption key, Saga server provides one by default

  • Change the encyptionKeyFile as soon as you start a working on a new project

• defaultRole ( type=string | default=admin | optional ) - Default role to be use in the users if no role is provided. At the moment Saga Server has 2 roles admin and editor
• type ( type=string | default=config | optional ) - Defines the type of authentication to be use by the server
  
  • Additional configuration is required depending on the type of security selected

$action.getHelper().renderConfluenceMacro("$codeS$body$codeE")

Saga Server counts with 3 authentication types

• Config - Uses usernames and passwords defined in the configuration file
• LDAP - Uses the LDAP protocol to connect to a Directory Server
• SAML - SSO login method offering more secure authentication. (Currently on development, available Microsoft SSO)

Config

Config authentication is the most basic of all, ideal for demos, but not recommended for production environments, unless in a close environment. This authentication  $action.getHelper().renderConfluenceMacro("$codeS$body$codeE")

LDAP

$action.getHelper().renderConfluenceMacro("$codeS$body$codeE")

SAML

$action.getHelper().renderConfluenceMacro("$codeS$body$codeE")

Login Access

FORM

Basic Authentication

API Key