Nexeed

Multitenant Access Control
    • Developer documentation
      • Concepts
        • Authentication
        • Authorization
        • Resources
        • Roles
        • Sharing
      • Getting started
        • Registration
        • Authentication
        • Authorization
        • Multitenancy
      • How-to
        • Get & handle tokens
        • OAuth 2.0 for Mobile and Native Apps
        • Evolve authorization in your application lifecycle
        • Use Web Core for user login
        • Handle our integration events
        • Do automated testing
        • Advertise things to colleagues
      • Deep dives
        • OAuth2 and its flows
        • OpenID Connect endpoints
      • Troubleshooting
Multitenant Access Control
  • Industrial Application System
  • Core Services
    • Block Management
    • Deviation Processor
    • ID Builder
    • Multitenant Access Control
    • Notification Service
    • Reporting Management
    • Ticket Management
    • Web Portal
  • Shopfloor Management
    • Andon Live
    • Global Production Overview
    • KPI Reporting
    • Operational Routines
    • Shift Book
    • Shopfloor Management Administration
  • Product & Quality
    • Product Setup Management
    • Part Traceability
    • Process Quality
    • Setup Specs
  • Execution
    • Line Control
    • Material Management
    • Order Management
    • Packaging Control
    • Rework Control
  • Intralogistics
    • AGV Control Center
    • Stock Management
    • Transport Management
  • Machine & Equipment
    • Condition Monitoring
    • Device Portal
    • Maintenance Management
    • Tool Management
  • Enterprise & Shopfloor Integration
    • Archiving Bridge
    • Data Publisher
    • Direct Data Link
    • Engineering UI
    • ERP Connectivity
    • Gateway
    • Information Router
    • Master Data Management
    • Orchestrator
Nexeed Learning Portal
  • Multitenant Access Control
  • Developer documentation
  • Getting started
✎

Getting started

You checked out all the concepts on how authentication, authorization and resource based access work in Multitenant Access Control? Or you are already familiar with such topics?

This chapter now covers the basic steps to go when applying this knowledge hands-on.

Start by topic

  1. Start off by registering your application in Multitenant Access Control to enable all further steps. Get your application registered

  2. Implement authentication by handling OAuth tokens in your use-case. Getting started with authentication

  3. Implement authorization by using resources, roles and access control lists provided by Multitenant Access Control. Getting started with authorization

  4. Use the resources provided by the system in a multitenant capable way

Start by use-case

  1. Protect the REST endpoints of your module

    1. Get registered as a module in Multitenant Access Control

    2. Implement Resources, Roles and ACL checking

  2. Call the protected endpoints of another module

    1. Get registered as a module in Multitenant Access Control

    2. Get assigned the appropriate roles to access the endpoint’s resource (see user manual)

    3. Get a token specific to the resource owner and provide it as authentication header in the call

  3. Restrict the UI of your module

    1. Use the user token to load the currently assigned roles and privileges from the user ACL into the UI

    2. Hide or restrict UI objects according to your resource requirements to improve user experience

    3. Additionally restrict the access in the backend according to use-case 1

Contents

© Robert Bosch Manufacturing Solutions GmbH 2023-2025, all rights reserved

Changelog Corporate information Legal notice Data protection notice Third party licenses