Trust Manager

Trust Manager is unique in the collection of micro services that comprise the Sitelink3D REST API. All security policies within Sitelink3D are enforced by Trust Manager.

The Basics

Trust Manager is SiteLink's security gate keeper. It exists for two purposes, both of which are typically transparant to users of the SiteLink API.

  • Maintain a security node hierarchy used to issue and verify security tokens.
  • Authorize each call made to every microservice using these security tokens.
Tip

Definitions for the concepts referenced here including the security node hierarchy and security tokens are described on the Sitelink3D security page.


About This Section

This section is aimed at developers who wish to understand the SiteLink security model sufficiently to interact with the public SiteLink API. The following is the minimum knowledge required to get to work with SiteLink.

  • Every API call to a Sitelink3D micro service requires a header parameter called X-Topcon-Auth.
  • A developer must provide a security token in this field.
  • The security token can be issued to the developer by various means. Connecting to a site is one example of token issuance.
  • Multiple tokens can be provided to each call.
  • At least one of the supplied tokens needs to permit access to the call being made.
  • Each service uses Trust Manager to confirm that the token or tokens supplied allow access to the operation being requested and return appropriately.
Tip

Definitions for the concepts referenced here including the security node hierarchy and security tokens are described on the Sitelink3D security page.


About This Section

This section is aimed at developers who wish to administer SiteLink security policies. Define resources that permissions can be granted against and generate security tokens to issue to users. The following is the minimum knowledge required to administer security using Trust Manager.

  • Trust Manager implements a security model known as Authorization Based Access Control (ZBAC). Readers unfamiliar with the benefits of this model can peruse our security model walk through.

The Trust Manager REST API is expressed in terms of nodes, A developer may happily interact with SiteLink without knowing how Trust Manager works. All that is required is the use of JWT tokens that are issued and an understanding that these tokens Because Trust Manager implements , the task of authorizing API calls is easy as it is based on tokens. To understand how Trust Manager these tasks and why they are necessary, it is necessary to understand that Trust Manager implements security using which is explained Each call to a SiteLink micro service.

Tip

Definitions for the concepts referenced here including the security node hierarchy and security tokens are described on the Sitelink3D security page.