This section describes how security is mapped between Digizuite and Episerver.
Introduction
The API connection to the DAM is running the secure protocol (HTTPS). The username and password is what provides Episerver Optimizely access to the DAM web services. If the user requires additional security, there are different possibilities to choose between, for example:
- configuring IP restrictions on the communications between Episerver Optimizely and the DAM
- limiting the Episerver Optimizely user in the DAMto only access content published to the Episerver Optimizely channel.
Roles
In the configuration there is a mapping of DAM roles and Episerver Optimizely roles. When a DAM asset metadata is returned to Episerver Optimizely , there happens a real-time mapping of access rights. It means that only Episerver Optimizely users with read access to the asset can see it (typically everyone), and only Episerver Optimizely users with write access can edit metadata and upload new assets (typically editors).