Managing Identity and Access
The Identity & Access module allows you to manage users, access permissions, and application tokens in Tandem Connect. With Identity & Access, users can
- Create teams, users, roles and application tokens.
- Assign roles and team members
- Customize access level permissions for each user, role, and application token.
Users
The Users feature allows users to create a user and set the access level permissions and roles for each user.
To create a user:
- Navigate to Identity & Access > Users from the navigation menu. The Users page opens.
- Click Grant Access.
Enter the name and email address of the user you want to add.
Select the role you want to assign to the user from the Role drop-down menu. Note that you can select multiple roles.
Click on Grant Access
Roles
The Roles feature allows users to create a role and set the access level permission for each role.
To create a role, follow the procedures below.
- Navigate to Identity & Access --> Roles from the navigation menu. The Roles page opens
- Click New Role. The New Role page opens. (Note: By default, there are a few predefined roles in the account)
- Enter a name for the role.
In the Permissions table, select the access level you want to give to the role for each resource.
Click Create Role. A confirmation message verifying that your role has been created will be displayed.
Application Tokens
The Application Tokens feature allows users to create application tokens that can be used to communicate securely with Tandem Connect API
To create an application token, perform the procedures below
- Navigate to Identity & Access > Application Tokens from the navigation menu. The Application Tokens page opens.
Click New Application Token. The New Application Token page opens.
Enter a name for the application token.
- Select a role you want to assign to the application token from the Role drop-down field.
Use Application Tokens
Once application tokens are created to access the Tandem Connect API, perform the procedures below.
- Using the ID and Secret key of the application token created, obtain a bearer token, which will be used to access the Tandem Connect API. Refer to the screenshot below for a sample request using Postman:
| Key | Description |
|---|---|
| 1 | Make sure that POST method is selected |
| 2 | Enter the URL of the same environment where the application token is created then append /auth/token. |
| 3 | Go to the Body tab then select raw |
| 4 | Change Text to JSON. |
Click Send to complete your request. If the request is successful, the bearer token will be displayed as idToken in the Response section in Postman.
Using the bearer token you obtained, you can now access the Tandem Connect API. Note that the bearer token expires within 30 minutes.
Teams
The Teams feature allows users to manage the users in their account and group them depending on their preferences (e.g., by role or department). Grouping the users in a team makes it easier to share private resources within the platform.
To create a team, follow the procedures below
- Navigate to Identity & Access > Teams from the navigation menu. The Teams page opens.
- Click New Team. The New Team page opens.
Enter a name for the team.
In the Members drop-down field, select the users you want to assign to the team.
Click Create Team. A confirmation message verifying that your team has been created will be displayed.
