User Configuration

For certain capabilities the Financial Services Workbench relies also on function that are available through the OpenShift web console. Therefore it might be also necessary to setup users in OpenShift despite the common setup of users in an OIDC compliant Identity Provider (Keycloak).

Note: The authentication mechanism of deployed solutions is only dependent on OIDC compliant Identity Provider settings.

Overview

Financial Services Workbench User

These users are typically involved in the Design and Development process of a solution. They are mainly configured in the attached Identity and Access Management system (IAM), respectively Keycloak, that also serves as the main OIDC compliant Identity Proivder. For configuring users, please see User Configuration OIDC and the underlying User Role model.

OpenShift User

As stated before, some capabilities also require that users that are involved in the process of developing solutions also need certain permissions on dedicated OpenShift namespaces. For configurations in the OpenShift cluster please see User Configuration OpenShift.

End User of deployed solutions

These users are able to call the published API operations of a deployed solution. They are mainly configured in the attached Identity and Access Management system (IAM), respectively Keycloak, that also serves as the main OIDC compliant Identity Proivder. For configuring users, please see User Configuration OIDC.