User & Security - Glossary
The team accounts in Document360 are members that have access to the Knowledge base portal. The team accounts will be listed with their profile image, name, email, portal role, and login activity information on the team accounts overview page.
Team account group
Team account groups act as assignable sets of permissions that limit what a user can access on your Knowledge base.
A Reader account is an account in Document360 for end-users to access using their credentials to view the versions, languages, and categories in a knowledge base site.
Reader account group
Reader groups act as assignable sets of permissions that limit what a reader can view on the private knowledge base.
Self-registration is a feature that allows a user to register themselves for a reader account instead of having to be invited by a project team member.
Roles in Document360 are specific permissions for access control (edit, or configure) in the project that are assigned to the team accounts of a Document360 project.
Content role and access
Access to the content can be set through this content role and access feature in Document360.
A portal role defines the permission for activities a team account can perform in the Knowledge base portal.
A content role defines the permission for knowledge base content a team account can perform in the Knowledge base portal.
The owner in Document360 is a team member who has access to everything including the billing in a project.
Admin is a default portal role in Document360 that has access to everything except billing.
An editor is a default content role in Document360 who manage the articles, categories, drive, workflows, and content reuse.
The draft writer is a default content role in Document360 who can add or edit the articles/category pages but has limitations in publishing them.
Custom role in Document360 is the additional content or portal roles other than the pre-set default roles that a team account adds.
A contributor in Document360 is an editor or draft writer with no content access.
Site access is a feature in Document360 that is used to manage access to the knowledge base site content at an entire project, version, or language level.
Public access is a site accessibility feature in Document360 when used, everyone on the web can access the published content of the knowledge base site with no prior login.
Private access is where the content is kept secure and private, only accessible to specific people with a reader account or team account, and it is not open for the public to see.
A hybrid site access setting that allows parts of the knowledge base to be public and parts of the knowledge base to be private access.
IP restriction provides an additional level of security for the knowledge base by either restricting or allowing access to user-designated IP addresses.
Single Sign-On or SSO as the term suggests allows for user authentication and access to multiple applications or websites with a single login event.
Users of the Single Sign-On or SSO authentication method for logging in instead of the standard login protocol. This allows the user to access multiple projects in Document360 and other service providers with a single login event.
The Single Sign-on feature is established with two broad standard protocols adopted by Document360 (SAML and OpenID)
An external entity that stores and manages the identity information of users; the IdP also authenticates the users by facilitating the Single Sign-On (SSO) feature.
Here are some IdP you can configure with Document360
- Azure AD
A service provider is an operational body that offers services to an organization by providing network and storage services.
A Security Assertion Markup Language (also SAML 2.0) is an open standard protocol that enables Single Sign-On by providing authorization and authentication to web-based applications in this case your Document360 projects.
OpenID Connect (OIDC) is an open standard that is built on the OAuth 2.0 protocol, which gives OpenID an additional layer of security.
JWT (JSON Web Token) is an open standard that is used to securely transmit information through parties as JSON Objects.