Updates Jam: Security. Administration. Web UI.

We continue to enhance our Maestro solution. With this blog post, we would like to cover the improvements int the security of the application, Administration functionality and Maestro UI.

Security

Security updates covered a wide range of changes. Our major improvements are the following:
  • Permissions mechanism was restructured to provide clear and effective permission management. It now consists of three levels of entities: Role, Permission Group, and Action. Each User Role includes Permission Groups, each Permission Group includes Actions, each Action corresponds to some action that the user can perform in Maestro. 
 
  • Permissions can be assigned on different levels, such as Customer, Tenant, Project, and User. For each user, the highest-priority setting is applied, which is suitable for every individual situation. For example, Project Role settings will overlap Tenant Role settings. User email settings, if any, will override settings of any other level. The general Priority level is displayed on a scheme below.
  • Resource permissions sharing functionality was implemented, allowing the instance owner to transfer ownership rights on the instance to another user or give/change permissions to manage the instance to other users.

  • The new security scan tool, Qualys, is introduced for constant monitoring over virtual infrastructures in all supported clouds. You can initiate the Qualys security scanning via the Content View window on the Management page.
  • Account expiration functionality was implemented to intensify the security of accounts. It can also be used as a temporary solution to demonstrate the application functionality to a particular user.
  • M3 Server Security level is enhanced by securing access to it only by using credentials. Only users who have the respective credentials can now have access to review and modify processes on the m3_server.

Maestro Administration

The m3_admin API functionality was implemented, providing a standardized and commonly used way to review and manipulate the admin part of Maestro via the HTTP interface and allowing third-party services to easily configure Maestro: activate/deactivate tenants or regions, add new users, etc. 

Web User Interface

The modal windows functionality was implemented, displaying
  • Confirmation message, appearing when you click an action button and asking to confirm the action;
  • System message, providing additional information on a necessary action to be performed.

We started to implement the localization functionality, to support the translation of our solution into different languages for a wider audience.
At the moment, the Spanish localization is available. Russian and Portuguese languages will be implemented with future releases.  

We’ve been constantly improving our solution, enhancing security and functionality, making the UI part user-friendly and intuitively understandable, to provide the best services.

Follow our blog to get more news on our project.
=)

Comments

Popular posts from this blog

Maestro Analytics: Essentials at the Fingertips

Maestro: Greeting the Green Dragon

Maestro Orchestrator: Product? SaaS? Framework!