Skip to Content

App security groups in Jitterbit App Builder

Introduction

Security groups are a key part of the security model used to manage a user's permissions and their access to applications and data. With security groups, rather than assigning permissions to individual users, you can assign users to one or more groups. You then grant privileges to these groups, which in turn allows access to specific applications, data sources, and their functionalities.

Security groups act as a bridge between users and their permissions within the App Builder platform, providing a manageable and scalable role-based access control system.

Core concepts

Authorization: Roles and permissions

Authorization in App Builder is based on a system of roles and permissions:

  • Permissions are the most granular level of control, defining actions a user can take, such as insert, update, delete, and read.

  • Roles are collections of these permissions that are tied to a specific data source. For example, a Contributor role might have insert and update permissions, while a Viewer role may only have read permission.

Security groups are granted roles for particular applications or data sources. All users within that group inherit the permissions defined by those roles.

Application and data source access

A user's ability to access an application or a specific page depends on their group memberships.

For example, a customer data source is used in two different applications: Customer Reports and Customer Lookup.

  • A user in Group A has access to the Customer Reports app and has a role with full permissions for the customer data source.
  • This user cannot access the Customer Lookup app unless they are also a member of a group that grants access to it.

Similarly, if an application contains a page built directly on a data source (such as a file upload page built on a local file system), the user's group must also have explicit access to that data source to be able to navigate to that page.

User organization

You can add multiple users to a security group to manage their permissions collectively. This allows you to organize users based on their roles and responsibilities. For example, you might create groups based on:

  • Job titles: Accounts Payable, Accounts Receivable.

  • Departments: Finance, HR.

  • Generic permissions: Admin, Read-Only.

Identity provider integration

App Builder can integrate with external identity providers, such as Okta, Microsoft Entra ID (Azure AD), or Auth0. In this setup, you can map security groups from your identity provider to App Builder's internal security groups. This lets you manage user access centrally through your existing identity management system.

Built-in and custom groups

App Builder provides built-in groups, such as Users and Administrators. You can also create your own custom security groups to fit the specific needs of your organization.

How to set up an app security group

To set up an app security group, follow these steps:

  1. Create the security group:

    1. Go to IDE > User Management.

    2. Select the Groups tab.

    3. Click + Group. The Group popup opens.

    4. Enter a name and an optional description for the group.

    5. Click Save, then close the popup.

  2. Grant privileges and assign roles to the group:

    1. With the group selected, click Manage Privileges. The Privileges popup opens.

    2. Click Create.

    3. For Type, select either Application or Data Source.

    4. The label on the menu below changes according to your selection. Use it to select the specific application or data source.

    5. Click Save. A Roles pane appears. If Type is Application, the roles are those for all data sources used by that application. If Type is Data Source, the roles are those associated with that data source.

    6. In the Roles pane, click Grant for each role you want to assign to the group.

    7. Repeat steps 2 to 6 for additional apps or data sources. When done, close the popups.

  3. Add users to the group:

    1. Select the Users tab.

    2. In the Users panel, select the user to add to the group.

    3. In the Membership panel, click + Membership.

    4. In the new row, open the menu and select the newly created security group.

    5. Click the Save icon.