Capability

Security

Search Bar

Liferay DXP is built with security in mind. A variety of standards based authentication methods and integrations can be used to ensure secure access to a site and its resources. Robust role-based access control with permissions gives you fine grained control over what authenticated and unauthenticated users can access, share, or edit. Liferay DXP’s web services also have a multi-layered and configurable approach to security and authorization.

Category
  • Capability
  • Deployment Approach
  • Feature
  • Resource Type
Category
  • Capability
  • Deployment Approach
  • Feature
  • Resource Type
Pricing Permissions
Official Documentation
Pricing Permissions With Liferay Commerce, you can use permissions to control access to Pricing applications and resources in the Commerce tab of the Global Menu (Global Menu). Control access to...
Store Management Permissions
Official Documentation
Store Management Permissions With Liferay Commerce, you can use permissions to control access to Store Management applications and resources in the Commerce tab of the Global Menu (Global Menu). ...
Managing Guest User Entries
Official Documentation
Managing Guest User Entries When you create an object and its application UI, unauthenticated users cannot add object entries, even if you add an object-backed application to a page and grant the...
Audit Framework
Official Documentation
Audit Framework Liferay's audit framework shows activities relating to users, user groups, organizations, roles, multi-factor authentication, and objects (definitions, fields, actions, layouts,...
Configuring Liferay
Official Documentation
Configuring Liferay Liferay is a very adaptable tool. You can modify and configure it to suit the needs of your application.
Audit Configuration Reference
Official Documentation
Audit Configuration Reference Configuration settings for audits are available at a system scope. You can find these settings by opening the Global Menu (Global Menu) and navigating to Control Panel...
Searching and Exporting Audit Events
Official Documentation
Searching and Exporting Audit Events The audit application comes with simple and advanced searching capabilities. To use the simple search, you can enter a search term and click the magnifying...
Security Settings
Official Documentation
Security Settings Enabling Antivirus Scanning for Uploaded Files More coming soon!
User Authentication
Official Documentation
User Authentication The User Authentication settings define how Users can authenticate, the various authentication methods that are required for them, and the screen names and email addresses that...
Configuring Content Security Policy Headers
Official Documentation
Configuring Content Security Policy Headers Modern browsers use Content Security Policy HTTP response headers to enhance web pages' security to mitigate certain types of attacks (like Cross-Site...
Setting Service Access Policies
Official Documentation
Setting Service Access Policies Service Access Policies define what services or service methods can be invoked remotely. You can apply many of them at once to produce a combined effect. They are...
Setting Up CORS
Official Documentation
Setting Up CORS CORS stands for Cross-Origin Resource Sharing. An Origin is a web server at a different domain, and a Resource is some asset stored on the server, like an image, PDF, or HTML file....
Securing Web Services
Official Documentation
Securing Web Services Liferay DXP provides four security layers for web services: IP permission layer: The IP address from which a web service invocation request originates must be white-listed in...
Using Authentication Verifiers
Official Documentation
Using Authentication Verifiers Authentication Verifiers authenticate remote invocations of Liferay Portal's API in a centralized and extensible way. They have two main responsibilities: Verify...
System for Cross-domain Identity Management (SCIM)
Official Documentation
System for Cross-domain Identity Management (SCIM) Liferay DXP 2024.Q1+ System for Cross-domain Identity Management or SCIM, is an open standard that automates user provisioning. In other words,...
Account Management Widget
Official Documentation
Account Management Widget Available 7.4+ Use Account Management widget to manage and access account information from any page. This provides access for those without permission to view the Control...
Users and Permissions
Official Documentation
Users and Permissions Liferay comes with a comprehensive framework to manage user access and roles within Liferay. To support complex organizational needs, there are several entities within the...
Accounts
Official Documentation
Accounts Available 7.4+ Accounts provide administrators with a way to organize and manage users for various commerce or business needs. Unlike organizations or user groups, accounts help...
Account Addresses
Official Documentation
Account Addresses Available 7.4+ Account addresses are the billing or shipping addresses associated with Business or Person accounts. Adding an Account Address Open the Global Menu (Global...
Account Groups
Official Documentation
Account Groups Available 7.4+ Use Account Groups to organize related accounts. For example, group accounts by region (Americas, Asia Pacific, Europe, etc.). Creating an Account Group Open the...