The API User Access Management project was initiated to enhance security and streamline access controls, ensuring that only authenticated and authorised clients can interact with APIs. The project focused on empowering Partner Administrators with the ability to create and manage their own teams, thereby restricting user access within their partner accounts. By introducing the concept of Partner Teams, the project aimed to simplify account management, reduce administrative overhead, and ensure seamless integration of new accounts within existing structures.
Introduced the concept of Partner Teams, allowing Partner Administrators to create and manage their own teams. This approach provides a filtered view of teams by PartnerId, ensuring that administrators can efficiently manage access without needing to update multiple systems when new accounts are added. Partner Teams are the primary mechanism for linking users to accounts, maintaining consistency and simplifying management.
Developed robust client credential management tools accessible from both the console and dashboard. Console users, primarily Partner Administrators, can manage client credentials across all accounts under their customer accounts. Dashboard users, who typically manage a single account, can also manage their own client credentials. The system is designed to automatically integrate new accounts or units without requiring manual updates to client credentials, reducing administrative burden.
Implemented role-based access controls that ensure users see only the client credentials relevant to their role. SysAdmins have the ability to manage all client credentials, while Admins can manage credentials they have access to but can view all client credentials. This fine-grained control ensures that each user’s access is appropriate to their responsibilities, enhancing security and efficiency.
The new API access management features were integrated into the main navigation of both the console and dashboard, making it easy for users to find and use these tools. This integration ensures a seamless user experience, where managing client credentials is intuitive and aligned with the rest of the user interface.