Individual API Policies
Each API must be protected, configure the right policy to only allow the right access
Use scopes to control which applications can access your APIs
Allow your APIs to require users to reauthenticate for sensitive information access
Control User Information transmitted to each API
In an era of Data Privacy concerns, you must ensure that user information is shared appropriately. Control the PII which each API can have access to
CYM Identity Features
| Salesforce Identity | CYM Identity | |
|---|---|---|
| Authorization Servers | 1 per community | multiple per community |
| Custom Scopes | ||
| Custom claims | ||
| Machine to Machine | ||
| Claim Management | ||
| JWT Access Tokens | ||
| Custom Policies | ||
| External Authorization Servers |