Integrating with InterSystems Security
When using the default CSP mechanism to provide connectivity for Deltanji's browser interface, Deltanji users can be authenticated using standard InterSystems security.
1. Set up your InterSystems user accounts in Management Portal.
2. Unless you need to use different credentials to control user access to Deltanji's Beyond Compare server, disable the setting of Deltanji passwords on user accounts as follows:
3. Define users in Deltanji.
4. Configure the Deltanji web application in Management Portal. Set the following checkboxes in the 'Allowed authentication methods' field as follows:
- Unauthenticated: not checked
- Password (and/or other authentication methods applicable at your site): checked
Deltanji users will require will need sufficient Caché-level privileges to access all relevant databases, including write permission on the Deltanji repository database itself and remote task server databases where applicable. They will also need the %System_Callout:U privilege in order to issue operating system commands (e.g. for manipulating a file component's read-only attribute). One way of providing these privileges to users is to do the following in Management Portal:
- Create a role named DeltanjiUser.
- Grant to the DeltanjiUser role both Read and Write permissions on the resource controlling your DELTANJI database. That resource is typically called %DB_DELTANJI.
- If Deltanji is managing code on other machines via task servers, grant to the DeltanjiUser role both Read and Write permissions on the resource controlling your remote DELTANJI-LOCAL databases. That resource is typically called %DB_DELTANJI-LOCAL.
- Grant to the DeltanjiUser role the Use permission on the %System_Callout resource.
- Add the DeltanjiUser role as an Application Role for the Deltanji web application, which is typically named /deltanji.