Authentication & Access Control
CRYMBO Platform provides secure, role-based authentication for all users and systems interacting with the platform.
Authentication Methods
| Method | Use Case |
|---|---|
| Email + Password | Standard user login via Platform UI |
| Server-to-Server (S2S) | API-based authentication for backend integrations |
| Multi-Factor Authentication (MFA) | Additional security layer for sensitive operations |
| SSO | Single sign-on for enterprise clients (available on request) |
Access Control Model
CRYMBO Platform uses role-based access control (RBAC) with fine-grained permissions:
- Each user is assigned one or more roles
- Roles define what actions a user can perform
- Permissions are scoped to the institution level
- Audit logs record all access and actions