Fleksa
Platform Features

Authentication & Security - Overview

Unified authentication and security across all Fleksa products

Authentication & Security

Unified authentication and security across all Fleksa products.

Overview

The Authentication & Security system provides centralized identity management, secure access control, and data protection across all Fleksa applications.

Key Components

Keycloak Integration

  • Single Sign-On (SSO) across all apps
  • Role-based access control (RBAC)
  • Multi-tenant support
  • OAuth 2.0 / OpenID Connect

User Authentication

  • Email/password login
  • Social login (Google, Apple)
  • Two-factor authentication (2FA)
  • Session management

API Security

  • JWT token authentication
  • API key management
  • Rate limiting
  • Request signing

Data Protection

  • End-to-end encryption
  • PCI-DSS compliance for payments
  • GDPR data handling
  • Audit logging

Architecture

Token Flow

1. User authenticates → Keycloak validates
2. Keycloak issues JWT → Contains roles/permissions
3. App includes JWT → API validates token
4. API authorizes → Based on token claims

Products Using This System

  • MyFleksa Dashboard (staff login)
  • MyFleksa Backend (API authentication)
  • Payperse & Payperse-Waiter (staff auth)
  • WebV3 (customer accounts)
  • All mobile apps

Security Features

Password Policy

  • Minimum 8 characters
  • Complexity requirements
  • Password history
  • Expiration rules (optional)

Session Security

  • Automatic timeout
  • Secure cookie handling
  • Device tracking
  • Concurrent session limits

Platform Features

Features available across all Fleksa products

Real-time Communication - Overview

Socket.IO based real-time updates across products

On this page

Authentication & SecurityOverviewKey ComponentsKeycloak IntegrationUser AuthenticationAPI SecurityData ProtectionArchitectureToken FlowProducts Using This SystemSecurity FeaturesPassword PolicySession Security