Integrations #

General integration setup #

It is important to mention that only users with admin privileges on uman can setup integrations.

Authentication and authorization is handled through the OAuth 2.0 protocol. Oauth 2.0 is the industry-standard protocol for authorization and allows for secure and scopes access. The refresh and access tokens are stored in our database and are encrypted through the use of Cloud KMS, where each workspace has its own unique encryption key. Next to that, we store user & group information related to the integration.

For more information on how exactly the data is processed and stored, see Data Processing.

Please navigate to the specific pages for each of the supported integrations regarding details about the setup and requested scopes.

Data exfiltration risk #

If the download functionality for content within uman is enabled for your workspace, there is a possible elevation of permissions where users can download content to their local workstation whereas they might only have read permissions on the source system (DMS). This is a risk that needs to be taken into account when enabling the download functionality.