Capability

Security

Search Bar

Liferay DXP is built with security in mind. A variety of standards based authentication methods and integrations can be used to ensure secure access to a site and its resources. Robust role-based access control with permissions gives you fine grained control over what authenticated and unauthenticated users can access, share, or edit. Liferay DXP’s web services also have a multi-layered and configurable approach to security and authorization.

Category
  • Capability
  • Deployment Approach
  • Feature
  • Resource Type
Category
  • Capability
  • Deployment Approach
  • Feature
  • Resource Type
Managing Guest User Entries
Official Documentation
Managing Guest User Entries When you create an object and its application UI, unauthenticated users cannot add object entries, even if you add an object-backed application to a page and grant the...
Searching and Exporting Audit Events
Official Documentation
Searching and Exporting Audit Events The audit application comes with simple and advanced searching capabilities. To use the simple search, you can enter a search term and click the magnifying...
Configuring Liferay
Official Documentation
Configuring Liferay Liferay is a very adaptable tool. You can modify and configure it to suit the needs of your application.
Audit Framework
Official Documentation
Audit Framework Subscription Liferay's audit framework shows activities relating to users, user groups, organizations, roles, multi-factor authentication, and objects (definitions, fields,...
Audit Configuration Reference
Official Documentation
Audit Configuration Reference Configuration settings for audits are available at a system scope. You can find these settings by opening the Global Menu (Global Menu) and navigating to Control Panel...
Security Settings
Official Documentation
Security Settings Enabling Antivirus Scanning for Uploaded Files More coming soon!
User Authentication
Official Documentation
User Authentication The User Authentication settings define how Users can authenticate, the various authentication methods that are required for them, and the screen names and email addresses that...
Setting Service Access Policies
Official Documentation
Setting Service Access Policies Service Access Policies define what services or service methods can be invoked remotely. You can apply many of them at once to produce a combined effect. They are...
Securing Web Services
Official Documentation
Securing Web Services Liferay DXP provides four security layers for web services: IP permission layer: The IP address from which a web service invocation request originates must be white-listed in...
Configuring Content Security Policy Headers
Official Documentation
Configuring Content Security Policy Headers Modern browsers use Content Security Policy HTTP response headers to enhance web pages' security to mitigate certain types of attacks (like Cross-Site...
System for Cross-domain Identity Management (SCIM)
Official Documentation
System for Cross-domain Identity Management (SCIM) Subscription Liferay DXP 2024.Q1+ System for Cross-domain Identity Management or SCIM, is an open standard that automates user provisioning. In...
Users and Permissions
Official Documentation
Users and Permissions Liferay comes with a comprehensive framework to manage user access and roles within Liferay. To support complex organizational needs, there are several entities within the...
Account Addresses
Official Documentation
Account Addresses Available 7.4+ Account addresses are the billing or shipping addresses associated with Business or Person accounts. Adding an Account Address Open the Global Menu (Global...
Account Management Widget
Official Documentation
Account Management Widget Available 7.4+ Use Account Management widget to manage and access account information from any page. This provides access for those without permission to view the Control...
Using Authentication Verifiers
Official Documentation
Using Authentication Verifiers Authentication Verifiers authenticate remote invocations of Liferay Portal's API in a centralized and extensible way. They have two main responsibilities: Verify...
Setting Up CORS
Official Documentation
Setting Up CORS CORS stands for Cross-Origin Resource Sharing. An Origin is a web server at a different domain, and a Resource is some asset stored on the server, like an image, PDF, or HTML file....
Accounts
Official Documentation
Accounts Available 7.4+ Accounts provide administrators with a way to organize and manage users for various commerce or business needs. Unlike organizations or user groups, accounts help...
Account Groups
Official Documentation
Account Groups Available 7.4+ Use Account Groups to organize related accounts. For example, group accounts by region (Americas, Asia Pacific, Europe, etc.). Creating an Account Group Open the...
Account Roles
Official Documentation
Account Roles Available 7.4+ Create different account roles with specific permissions and assign them to account users to manage access to accounts. There are two types of account roles: ...
Account Users
Official Documentation
Account Users For Liferay 7.4 U55+/GA55+ Once you've created an account, you can associate existing users with it manually. Alternatively, you can create and associate users with an account...