SSOCircle

MyIdentityGraph introduces a new Authorization as a Service (AzaaS) functionality with *-BAC (StarBAC) support. *-BAC can be described as a superset of various access control principles like ABAC, RBAC and, with a strong emphasis, ReBAC (Relationship Based Access Control). ReBAC considers the relationships stored in the Graph database “MyIdentityGraph” to deduct access permission information by leveraging Graph algorithms.

The AzaaS API interface is compliant with XACML REST and JSON Profile. Authentication to the AzaaS API requires the use of an OAuth Bearer token.