Changes

Page history
Documentation for ACL system and "ACL mediated endpoints" authored by Rob Oakes's avatar Rob Oakes 
Documentation providing information about how "tenant based data isolation" within Sonador is implemented.

* `security.index.md`: index page for security related pages within the documentation
* `security.authorization.md`: documentation describing "ACL mediated endpoints", the interaction between the ACL system within Sonador and the Orthanc Advanced Authorization plugin, the design rationale for the Sonador implementation, and implementation notes describing how the ACL mediated views were implemented inside of Orthanc
Show whitespace changes
Inline Side-by-side
home.md
View page @ 0ab32568
......@@ -3,6 +3,8 @@ Sonador is an open source platform for medical data and research. It helps resea
<img width="100%" src="uploads/img/sonador.capabilities.svg">
## [What Is Sonador?](https://sonador.oak-tree.tech)
<img align="right" src="uploads/img/sonador.platform-overview.svg">
......@@ -31,6 +33,7 @@ Artificial Intelligence in Medical Imaging
<img width="100%" src="uploads/img/sonador-ai.mlops.svg">
## [Deployment](deployment.index)
<img width="100%" src="uploads/img/sonador.production-deployment.svg">
......@@ -53,4 +56,11 @@ Artificial Intelligence in Medical Imaging
## [Security](security.index)
* [Managing Users and Access in Sonador](https://www.oak-tree.tech/blog/sonador-security-auth). Overview of user management in Sonador, how credentials are issued via OpenID connect, the role of "Identity Providers," and an example provider for AWS Cognito.
* [Credentials Management](dev.credential-management). Overview of credentials within the Sonador platform, specification for the token types used in the application, how they interact with the user model, and how they can be managed by the platform's API.
* [Resource Authorization in Sonador (ACL)](security.authorization). Overview of how resource access control (ACL) is implemented in the Sonador platform and documentation for ACL mediated endpoints.
* [Secure Networking Guide](prod.istio-networking). Details about how [Istio](https://istio.io/latest/about/service-mesh/) can be used as a service mesh to isolate traffic within Sonador for highly-secure environments.
## [Frequently Asked Questions](faq)