User authentication and permissions

The DB Sync system can authenticate end users with GAS/SSO/GIP, or with a login+password when using the direct mode.

Using GAS/SSO/GIP authentication

With the GAS, you need to set up Single-Sign-On (SSO) and define each DB Sync user in the Genero Identity Provider (GIP).

For more details, see Set up DB Sync with GAS/GIP.

Using direct mode login/password

When connecting directly to the DB Sync server, user authentication can be based on a login and password managed by the DB Sync system.

For more details, see Set up DB Sync in direct mode

User permissions

Read access is implicitly defined when binding an SQL table to a given DB Sync client app with the dbsync_app_conf tool.

Table modification permissions can be defined for insert, update and delete operations at the app/table level with the dbsync_app_conf tool, as well as for each user/app/table with the dbsync_user_conf tool.

Permissions settings can be fetched by DB Sync client apps with the function dbsync_app.get_app_tables(), to deny insert, update and delete operations directly in the client app and avoid a sync error.