** Improved security measure to avoid data being accessed by unwanted people
Problem: Anyone with a valid DbCode can access to the data stored in the database
Solution: To have an option to force people to use login credential to gain access (token)
- Pull out the field named “API DbCode Access”
Figure 1: API DbCode Access field in System Options
- Turn ON to allow people to gain access using only the DbCode
- Turn OFF to force people to gain access using login credential
Figure 2: Access denied when retrieving data using DbCode only
- People can only gain access via token, which is generated with the correct login credential (route: /api/Users/Login)
Figure 3: Able to retrieve data from the database using token
** Learn more about Azure Cloud
** Learn more about QNE Hybrid Cloud Software