diff --git a/server_admin/topics/overview.adoc b/server_admin/topics/overview.adoc index 68ca01cddf..4db4626975 100644 --- a/server_admin/topics/overview.adoc +++ b/server_admin/topics/overview.adoc @@ -1,4 +1,4 @@ -== Overview +== {project_name} features and concepts {project_name} is a single sign on solution for web apps and RESTful web services. The goal of {project_name} is to make security simple so that it is easy for application developers to secure the apps and services they have deployed diff --git a/server_admin/topics/overview/concepts.adoc b/server_admin/topics/overview/concepts.adoc index 9c7bcbd2fb..b2666db7e3 100644 --- a/server_admin/topics/overview/concepts.adoc +++ b/server_admin/topics/overview/concepts.adoc @@ -1,8 +1,7 @@ -=== Core Concepts and Terms +=== Core concepts and terms -There are some key concepts and terms you should be aware of before attempting to use {project_name} to secure your web applications -and REST services. +Consider these core concepts and terms before attempting to use {project_name} to secure your web applications and REST services. users:: Users are entities that are able to log into your system. They can have attributes associated with themselves like email, diff --git a/server_admin/topics/overview/features.adoc b/server_admin/topics/overview/features.adoc index d1aa409b15..98037ae663 100644 --- a/server_admin/topics/overview/features.adoc +++ b/server_admin/topics/overview/features.adoc @@ -1,6 +1,8 @@ === Features +{project_name} provides the following features: + * Single-Sign On and Single-Sign Out for browser applications. * OpenID Connect support. * OAuth 2.0 support. diff --git a/server_admin/topics/overview/how.adoc b/server_admin/topics/overview/how.adoc index ba1e760390..29bd5870fd 100644 --- a/server_admin/topics/overview/how.adoc +++ b/server_admin/topics/overview/how.adoc @@ -1,11 +1,11 @@ -=== How Does Security Work? +=== Basic {project_name} operations {project_name} is a separate server that you manage on your network. Applications are configured to point to and be secured by this server. {project_name} uses open protocol standards like link:https://openid.net/connect/[OpenID Connect] or link:http://saml.xml.org/saml-specifications[SAML 2.0] to secure your applications. Browser applications redirect a user's browser from the application to the {project_name} authentication -server where they enter their credentials. This is important because users are completely isolated from applications and +server where they enter their credentials. This redirection is important because users are completely isolated from applications and applications never see a user's credentials. Applications instead are given an identity token or assertion that is cryptographically signed. These tokens can have identity information like username, address, email, and other profile data. They can also hold permission data so that applications can make authorization decisions. These tokens can also be used to make secure