General Overview
In LDAP/Application Security Module it works in a similar way to the group module, where the system administrator has the ability to restrict access to different applications based on predefined user groups. This means that each group can have specific permissions to access certain functionalities or areas of the system, offering precise control over the actions allowed for each set of users.
Check below the tables that will be created in your database when configuring a security module.
The sec_logged (Logged User) and sec_users_social (Social Network Authentication) tables will be created if these features are enabled, the creation of the other tables is mandatory.
sec_users
CREATE TABLE "sec_users" (
"login" TEXT NOT NULL,
"pswd" TEXT NOT NULL,
"name" TEXT,
"email" TEXT,
"active" TEXT,
"activation_code" TEXT,
"priv_admin" TEXT,
"mfa" TEXT,
"picture" BLOB,
"role" TEXT,
"phone" TEXT,
"pswd_last_updated" TIMESTAMP,
PRIMARY KEY ("login")
);
sec_apps
CREATE TABLE "sec_apps" (
"app_name" TEXT NOT NULL,
"app_type" TEXT,
"description" TEXT,
PRIMARY KEY ("app_name")
);
sec_users_apps
CREATE TABLE "sec_users_apps" (
"login" TEXT NOT NULL,
"app_name" TEXT NOT NULL,
"priv_access" TEXT,
"priv_insert" TEXT,
"priv_delete" TEXT,
"priv_update" TEXT,
"priv_export" TEXT,
"priv_print" TEXT,
PRIMARY KEY ("login", "app_name")
);
sec_logged
CREATE TABLE "sec_logged" (
login TEXT NOT NULL,
date_login TEXT,
sc_session TEXT,
ip TEXT
);
NOTA: A tabela Usuários logados será criada somente se a opção Proteger usuários logados for habilitada durante a criação do Módulo de Segurança.
sec_users_social
CREATE TABLE "sec_users_social" (
"login" TEXT NOT NULL,
"resource" TEXT NOT NULL,
"resource_id" TEXT NOT NULL,
PRIMARY KEY ("login", "resource", "resource_id")
);
NOTA: A tabela users_social será criada somente se a opção Utilizar redes sociais for verificada durante a criação do Módulo de Segurança.
sec_settings
CREATE TABLE "sec_settings" (
set_name TEXT NOT NULL,
set_value TEXT,
PRIMARY KEY ("set_name")
);