Security FAQ

How can I see only the projects that I am working on?

Doing nothing Smile. By default every user sees only active projects where it is assigned. Of course when you start searching Twproject security starts working and you will see only projects, ToDos, resources  that you are allowed to see. See https://twproject.com/support/using-twproject/security/

How Twproject uses role-based security?

In two ways: global or local to a project. Global roles are valid everywhere (ok, not really everywhere, but in a security area) so if you have, for instance, a permission for “project read” you can see every project even if you are not involved on it; this could match the company’s boss case. Global roles are set from the user editor.
Locally to a project, role-based security is applied assigning users to a project. In this case a “project read” permission will allow a user to see the project structure from that point and down. See this section for a complete overview on security: https://twproject.com/support/using-twproject/security/

How can I configure permissions for my users?

Permissions are set on roles. Roles can be assigned directly to users or by assigning them to projects.
https://twproject.com/support/using-twproject/security/

How can I have a read-only user?

Yes you can, both globally or locally to a project. There are built-in roles that accomplish this goal: “Supervisor” , “Stakeholder” and “Customer” respectively.
https://twproject.com/support/using-twproject/security/roles/

There are password policies?

Twproject have several password policies. Go to “admin” –> “Security policies”.  If you company have already implemented such policies using Active directory or a LDAP server you should consider to use it for authentication. https://twproject.com/support/twproject-advanced-usage/connections/ldap-active-directory/

What an “administrator” can do?

Almost everything. There are some visibility restriction on private agenda events or private chat. If you have security concern, you should have only few (one or two) administrators and use “area managers” instead. Administrators have access to sensible configuration data.

Can I disable a user?

Yes of course. When a resource leave your company, administrator can disable it. Doing this you will preserve all inserted data and you will free a license. Go to the “resource editor” –> “security /login” and disable it.

Can I separate completely two departments data?

Twproject supports multiple separated “areas” in the same installation. Projects, users, resources, ToDos etc. created on says “area 1” are not accessible by users coming from “area 2”. Using security area you can manage two distinct companies/directions/department on the same installation. Cross-areas users can be created e.g.: top management. See https://twproject.com/support/using-twproject/security/ https://twproject.com/support/using-twproject/security/areas/

Can Twproject run on HTTPS?

Of course. On the cloud solution is already on HTPPS using a 2048 bit certificate. Twproject by default runs on Tomcat, you should refer to Tomcat documentation.

Can I configure Twproject for LDAP authentication?

Of course.
https://twproject.com/support/twproject-advanced-usage/connections/ldap-active-directory/

Can I import users from LDAP?

Yes you can.
https://twproject.com/support/twproject-advanced-usage/connections/ldap-active-directory/

Is a Two Factor Authentication available?

Yes. Twproject supports a Time One Time Password (T-OTP).
You can use your mobile phone with a T-OTP app like Google Authenticator.
https://twproject.com/support/twproject-advanced-usage/configuration/basic-configuration/

Do you have any certification for your Cloud service?

Yes. We are listed on Cloud Security Alliance Star registry.
You can see our assessment here: https://cloudsecurityalliance.org/star/registry/twproject-srl/services/twproject/

We are also Qualified by the Italian Cybesecurity National Agency (ACN) and Twproject has is available Cloud Product Catalog: https://catalogocloud.acn.gov.it/service/2531