# The administration model
This model defines users, roles and permissions for UnityBase.
@unitybase/uba
Classes
- uba_advSecurity_ns
- uba_als_ns
- uba_audit_ns
- uba_auditTrail_ns
- uba_els_ns
- uba_group_ns
- uba_grouprole_ns
- uba_otp_ns
- uba_prevPasswordsHash_ns
- uba_role_ns
- uba_subject_ns
- uba_user_ns
- uba_usercertificate_ns
- uba_usergroup_ns
- uba_userrole_ns
Members
uba_advSecurity: uba_advSecurity_ns
inner
constant
Advanced security settings.
For any authentication type add binding of user to IP address. For CERT additionaly add a binding to device fingerprint
uba_als: uba_als_ns
inner
constant
Attribute level security
uba_audit: uba_audit_ns
inner
constant
Security changes audit.
All changes to UBA model entities (except uba_als & uba_subject) + user login related event are logged here
uba_auditTrail: uba_auditTrail_ns
inner
constant
Data changes audit.
All DML statement for entity with mixin 'audit' logged here
uba_els: uba_els_ns
inner
constant
Describe, which role have access permissions to Entities methods.
Administering of entity level. The system checks the access by the rule "Allowed and NOT Prohibited"
uba_group: uba_group_ns
inner
constant
User groups
uba_grouprole: uba_grouprole_ns
inner
constant
Roles assigned to groups
uba_otp: uba_otp_ns
inner
constant
One time passwords.
One-time-password generation and verification
uba_prevPasswordsHash: uba_prevPasswordsHash_ns
inner
constant
Previous passwords hashes
uba_role: uba_role_ns
inner
constant
Administering subsystem roles
uba_subject: uba_subject_ns
inner
constant
Administration subjects
uba_user: uba_user_ns
inner
constant
Users
uba_usercertificate: uba_usercertificate_ns
inner
constant
User certificates.
used for Certificate authentification
uba_usergroup: uba_usergroup_ns
inner
constant
User memberships in groups
uba_userrole: uba_userrole_ns
inner
constant
Roles assigned to user
uba_advSecurity: uba_advSecurity_ns inner constant
Advanced security settings.
For any authentication type add binding of user to IP address. For CERT additionaly add a binding to device fingerprint
uba_als: uba_als_ns inner constant
Attribute level security
uba_audit: uba_audit_ns inner constant
Security changes audit.
All changes to UBA model entities (except uba_als & uba_subject) + user login related event are logged here
uba_auditTrail: uba_auditTrail_ns inner constant
Data changes audit.
All DML statement for entity with mixin 'audit' logged here
uba_els: uba_els_ns inner constant
Describe, which role have access permissions to Entities methods.
Administering of entity level. The system checks the access by the rule "Allowed and NOT Prohibited"
uba_group: uba_group_ns inner constant
User groups
uba_grouprole: uba_grouprole_ns inner constant
Roles assigned to groups
uba_otp: uba_otp_ns inner constant
One time passwords.
One-time-password generation and verification
uba_prevPasswordsHash: uba_prevPasswordsHash_ns inner constant
Previous passwords hashes
uba_role: uba_role_ns inner constant
Administering subsystem roles
uba_subject: uba_subject_ns inner constant
Administration subjects
uba_user: uba_user_ns inner constant
Users
uba_usercertificate: uba_usercertificate_ns inner constant
User certificates.
used for Certificate authentification
uba_usergroup: uba_usergroup_ns inner constant
User memberships in groups
uba_userrole: uba_userrole_ns inner constant
Roles assigned to user