Security
Security is a critical module in Vahana Cloud, enabling you to define security access policies for the vFlow application you design. Before publishing a vFlow app, it is essential to establish these policies to ensure secure access, user session management, and logging protocols.
When defining the access policies for a vFlow application, you can configure various session-related timeframes and set requirements for application logs. These policies govern key aspects like session expiration, logging requirements, and user inactivity timeouts, ensuring secure and controlled usage.
You can define the access policies as follows:
- On the Dashboard page, see the left panel.
- Put the mouse pointer on the left panel, and the left panel expands.
- In the left panel, click Security (
) to display the Security page. - On the Security page, configure the predefined policies as follows:
| Policy | Description |
| AP_STATUS | Set the application operational status to ACTIVE or INACTIVE. |
| AP_CLIENT_SECRET | Edit this pre-filled field to specify the client secret key so that you can connect your application to the Vahana Run Time Manager. |
| AP_SERVER_LOG_REQUIRED | For this property, enter Y if you want to make logs available of the current application, or enter N if you do not want to make logs available. |
| AP_APP_SESSION_EXPIRY_TIME | In this box, enter a numeric value (for example, 15). This value specifies the number of days after which the application’s session will expire automatically. After the session is expired, users must restart the app. |
| AP_USER_SESSION_EXPIRY_TIME | In this box, enter a numeric value (for example, 1440). This value specifies the time in minutes. If the user session’s time exceeds this value, the user session will expire automatically. |
| AP_MULTIPLE_SESSION_ALLOWED | In this box, enter Y to allow multiple concurrent sessions on different devices, or enter N to deny multiple concurrent sessions. |
| AP_INACTIVE_SESSION_REQUIRED | In this box, enter Y if you want to enable the inactive session expiration feature. When you activate the inactive session expiration feature, it automatically terminates the current user session if the user is not active for a specified period. Enter N to make the inactive session expiration feature disabled. |
| AP_INACTIVE_SESSION_EXPIRY_TIME | In this field, enter a numeric value (for example, 1236). This numeric value specifies the time in minutes. If the user is inactive longer than the value that you entered in the AP_INACTIVE_SESSION_EXPIRY_TIME box, the user session will automatically expire in the application. Thus, the user will have to log in to the app to access it again. |
| AP_MOBILE_APPLICATION_LOGS_REQUIRED | In this box, enter Y to make the application-related logs available. Enter N to not make the logs available to others. |
These security policies help maintain the integrity and safe operation of the application designed in the vFlow module.
Was this article helpful?
YesNo