Identity Server

The Identity Server tab provides settings that affect how the identity server operates. The identity server provides logged in users a token that helps to identify them wherever they are logged into the system.

To make changes to the Identity Server settings, click in one of the Value fields and begin typing. Click Save when finished.

Option

Function

security Special Permissions

Number of Minutes until a token expires for Mobile Apps

Controls how long a mobile user's login token can be used. Defaults to 600 minutes (10 hours). This is a safety feature that ensures that if a token was stolen it would be good only for a short amount of time. Increasing this number increases the risk that forged or stolen tokens can be used maliciously. Decreasing this number makes it more likely that a valid user will time out while they are working.

IT Admin

Number of Minutes until a token expires for the Internal Web App

Controls how long a web user's login token can be used. Defaults to 600 minutes (10 hours). This is a safety feature that ensures that if a token was stolen it would be good only for a short amount of time. Increasing this number increases the risk that forged or stolen tokens can be used maliciously. Decreasing this number makes it more likely that a valid user will time out while they are working.

IT Admin

Secret value internal web apps need to authenticate users

This value acts as a password salt and controls if a token can be used to access the Lucity RESTAPI. Set this to a unique value. Should not be the same as the Secret value mobile apps need to authenticate users.

IT Admin

Secret value mobile apps need to authenticate users

This value acts as a password salt and controls if a token can be used to access the Lucity RESTAPI. Set this to a unique value. Should not be the same as the Secret value web apps need to authenticate users.

IT Admin

The name of the certificate used for signing tokens on the internal Identity Server

See Installation Guide.

IT Admin

The name of the certificate used for signing tokens on the mobile Identity Server

See Installation Guide.

IT Admin

URL to the Identity Server for the Internal Web App

The URL to the Identity Server for the Internal Web App.

IT Admin

URL to the Identity Server for the Mobile Apps

The URL to the Identity Server for the Mobile App.

IT Admin

Use SSL for Internal Web App Security

When enabled, the internal web app must run over SSL. If you expose Lucity Web to the Internet, this should be set to TRUE.

IT Admin

Use SSL for Mobile App Security

When enabled, the mobile app must run over SSL. This should always be set to TRUE unless your mobile devices only communicate over a secure VPN.

IT Admin