Skip to main content

Security

The GeneTegra includes its own authentication and authorization infrastructure to ensure that only privileged individuals are able to access its components. Security is handled and managed at the management server. Users must login to the system in order to use the application. Every action that requires a specific permission set is validated against the user’s access control list (ACL), which is configurable by the administrator using the management console. A GeneTegra Administrator may add access restrictions at various levels to control database and model access, query operations such as the opening, the saving, and the execution of queries, and data export permissions.

User Authentication

The GeneTegra system uses its own authentication module or an LDAP Server (Active Directory) to manage user accounts. GeneTegra maintains a MySQL database that encloses its user’s authentication information. The management server uses encryption to protect the user access information. The communication between client/server is encrypted using Secure Sockets Layer SSL.

Group and User Permissions

The system supports role-based controls. Permission on all objects and the actions allowed will be controllable by the system and must be defined. A user is only granted access when having specific access permissions to the requested object. The relations between permissions must be defined by the GeneTegra Administrator. GeneTegra allows the user to export data to external formats such as delimited files or Excel files. The GeneTegra Administrator may forbid the export of data for one user or groups of users using GeneTegra’s permission structure.

Security at the Database Level

GeneTegra will not override the security at the database level. A user will only be able to access a database using the credentials provided to him/her by the administrators of each database. The GeneTegra Administrator may decide to add additional restrictions by disallowing a user from accessing a database through GeneTegra even though he/she is granted access by the database itself. The database login information is encrypted to ensure security. Besides the database level security put in place by the corresponding database administrators, the models generated by GeneTegra Administrators will dictate the fields and data that are accessible. Limiting access to fields and data will be performed by disallowing access to the models that include them. GeneTegra gives administrators the capability of generating an unlimited number of views of the same database; these views may include or exclude any combination of fields. Different views can be shared with different groups and users.