Gravitee.io AM 3.0
We are pleased to announce that the 3.0 release of Gravitee.io Access Management is now available as part of the new Gravitee.io API Platform v3.
Gravitee.io Access Management is a flexible, lightweight and easy to use Open Source Identity and Access Management solution that offers a centralized Authentication and Authorization Service to secure your applications and your APIs.
Don’t miss a thing by subscribing to our newsletter to hear about our new releases and the Gravitee.io community.
What’s new ?
Gravitee.io Access Management comes with the new Gravitee.io API Platform v3 to bring you not only a product, but an API Platform, to align components versions and provide a seamless integration of components within the API Platform.
Here are the new features we want to highlight :
- Application management
- Multi-factor authentication (MFA)
- Analytics
- Permissions / RBAC-based portal
Application Management
Gravitee.io Access Management is tightly coupled with protocols such as OpenID Connect or OAuth 2.0 and the administration of all these settings can be difficult to understand for no technical users.
For this version Clients administration has been rebuilt from scratch and replaced by the new Application Management feature for multiple reasons :
- Improve user experience and comprehension
- Require less knowledges about security protocols
- Align the application vision between API Management & Access Management
- Apply best security options according to the type of application (Web, SPA, Mobile, …)
- Seamless integration with Dynamic Client Registration
The administration portal has changed to reflect these changes with new screens to better support users in their APIs and Applications configuration.
Multi-factor authentication (MFA)
Multi-factor Authentication is an additional step during the login flow in order to enforce access control. A user is granted access only after successfully presenting two or more pieces of evidence (called factors) to the authentication mechanism.
Gravitee.io Access Management now supports Time-based One-time Password Algorithm (TOTP), a code generated by an authenticator (e.g. a security token on your smartphone) that only the user possesses and has to provide during the authentication flow.
Factors are based on the Gravitee.io API Platform plugin systems letting you to add new factors in an easy way.
Analytics
A new analytics dashboard is now available for each security domain giving you the following information :
- Sign-in activity
- Sign-up activity
- Users status repartition
- Top applications
New data and dashboard will be added in the next versions of Gravitee.io Access Management.
Permissions / RBAC-based portal
Since the early versions of Gravitee.io Access management , every users of the administration portal was able to manage the whole platform without restrictions.
Gravitee.io Access Management v3 now provides fine-grained access management of all resources such as the security domains, the applications, the identity providers and so on.
Using the V3 portal and the REST API, you can segregate duties within your administrators team and grant only the amount of access to users that they need to perform their tasks.
For more information please visit our Roles and Permissions guide.
And more …
- Preparation for Financial-grade API (FAPI) certification.
- Entry points configuration, you can now set your Gateway URL directly from the UI.
- reCAPTCHA service for the Portal Login Page
The complete changelog can be found here.
Migration guide
You are currently using the Gravitee.io Access Management v2? Please read our Migration Guide to upgrade your platform.
To discover all these new features, just follow the installation guide or start to play with Gravitee.io by using Docker.
Waiting for your feedbacks, we would be happy to talk and help you from Gitter channel.