3. Robust User and Login Management

Overview

Q.magic is deployed as a standard J2EE application, with industry best practices for password based authentication, session and password management and transport layer security
Supports multiple user roles (up to 100)
Includes password management tools
Modular design allows to use different relational databases and user data storage depending on customer needs as well as different authentication mechanisms
Includes fine-grained authorization and a scalable access policy engine; most application elements can be assigned a security category, including individual data fields, sections of input forms, defined searches and reports, user actions, such as creation and termination of processes, completion of tasks many more
Each category is protected by configurable role-based access policy governing permissions for Create-Read-Update-Delete actions
All Security categories are extensible
Password criteria can be set (length, character combination, expiration date)
Includes security hierarchy and grouping (e.g. assign a group of users to a manager, who can access the records in her group)
Includes resource-based security; assign any resource in the system to any role or user
Provides user impersonation; allows a manager to ‘adopt’ a user’s persona and see the system from their perspective