Basic Concepts

In this section, we will provide an introduction to the various technical concepts that LeZa provides.

Authentication

Authenticating a user or client trying to access any application or API service has a valid identity (proving they are, who they say they are eg. SCA) is a critical part of any access control integration. LeZa allows you to control access to your application using both the OAuth 2.0 and OpenID Connect specifications and provides multiple options to handle the authentication experience built on top of the LeZa feature set.

LeZa provides seamless no-code integrations with popular social sign-in identity providers (SSO).

LeZa has built-in logic flows for strong and adaptive authentication as well as typical user registration and password (re)setting functionality.

LeZa understands that the user sign-in experience is important and provides you with full UI customisation functionality.

Authorization

Authorization is a crucial part of verifying that a user/client has the necessary permissions to access resources and web services. With LeZa, you can achieve granular role-based access control on any application or API service using both OAuth 2.0 and OpenID Connect.

LeZa at its core is an authorization engine for minting and validating OAuth 2.0 and OpenID Connect tokens.

LeZa provides easy to use functionality to create permissions for your protected resources and scopes, associate those permissions with authorization policies, and enforce authorization decisions in your applications and services.

Organizations

LeZa enables you to organize your customers in organizations and sub-organizations. An organization is a hierarchical space where the admins of the organisation can independently perform access control actions such as assign applications, manage users, custom roles, permissions and access groups. (see about more this here)

Organizations provide special features to easily manage hierarchy-based access control

Audit & Traceability

LeZa tracks all the activity of your organization or the organisations using your application in order to understand the activity of your users and critical security changes that were made.

LeZa provides access to granular detailed logs which allow you to understand your user's interaction with your application/services and the meta-data surrounding those transactions.

Notifications

One of LeZa's many convenient functionalities is notifications. This provides you with easy-to-use functionality to send notifications from your application or application services to one or several users.

Your users will have the ability to independently configure what they do or do not want to receive.

This is a really interesting feature for those looking to generate backend service type notifications or broadcast user notifications across multiple customers. Contact our support who will be happy to tell you more.

‚Äč