Skip to main content
Submitted

Members management and security

Lais Laudari
Ezequiel Souza
marcosmelo
Leandro Almeida
+1
  • Lais Laudari
    Lais Laudari
  • Ezequiel Souza
    Ezequiel Souza
  • vicente-lemes
  • marcosmelo
    marcosmelo
  • Leandro Almeida
    Leandro Almeida
  • Kayla Turner

Ezequiel Souza

The current mindset is security and this term is very fragile in Pipefy.  Specifically speaking in terms of members management.

 

There is no groups of members, apparently even that member included into Pipe you need reflect this access into all tables that you have to make sure that the member can use the pipe.

The topics must be fixed are:

  1. Groups of member
  2. Privileges based on groups (or maybe) use integration to Active Directory or similar
  3. Create logs for every access and action to be reviewed when necessary
  4. Integrate these logs to permit access from SIEM to compliance reasons 
  5. Use the hash into URL to avoid to get access using this way and get information unduly

There is another things and sincerely this must be reviewed urgently specially in ages of GDPR and LGPD (Brazil equivalent law).

Thanks.

 

 

2 replies

Raphael Costa
Pipefy Staff
Forum|alt.badge.img+2
  • Product Manager
  • 77 replies
  • December 22, 2020

@Ezequiel Souza Thx for your feedback. We are planning some improvements for member management in 2021. This is for sure a top priority for us! Thx for the very detailed feedback.


Forum|alt.badge.img+5
  • Pipefy Staff
  • 94 replies
  • December 22, 2020
Updated idea status NewSubmitted

Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings