Blog
Introducing Developer Permissions for Team Based Development
As we move toward the launch of version 6.0, we are excited to introduce new features to the Backendless platform that will make your life easier starting today. Today, we are going to introduce you to a highly-requested new feature, Developer Permissions. Application development is a team sport. It takes a team to build more…

Introducing Developer Permissions for Team Based Development

As we move toward the launch of version 6.0, we are excited to introduce new features to the Backendless platform that will make your life easier starting today. Today, we are going to introduce you to a highly-requested new feature, Developer Permissions. Application development is a team sport. It takes a team to build more…

How to Manage a Data Object’s ACL Using API

In another post, we described how to adjust an object’s access control list (ACL) using Backendless Console. As we mentioned, in addition to Backendless Console, the object’s permissions can be controlled using API.

How to Customize Session Timeouts

Once a user of a Backendless-powered app logs in, a session is established. For a variety of reasons, including application security, it is best not to allow users to remain logged in indefinitely. Therefore, every session has an inactivity timeout timer that is reset with every new API call made within the session. When the…

How to Assign Roles to Users Using Backendless Console

In another post, we wrote about how to create developer-defined security roles and how to secure data table access for a security role. Ultimately when a client application makes API requests, the security evolves around users, since it is a user who authenticates themselves against the system.

How to Restrict Access to Files Using Backendless Console

In another post, we described how to obtain a file’s public URL using Backendless Console. Even though anyone can obtain a public URL for a file or directory, it is very easy to change the permissions to restrict file download for anonymous (not authenticated) users.

How to Update a User Account Using User Service API

The ability to update a user account is a common use-case for user management in applications. Either the users themselves or the admin may need to update user properties. Backendless provides the API for updating user accounts, although app admins/developers can do so using Backendless Console as well.

How to Lockout a User Account Upon Unsuccessful Logins

It has happened to a lot of people, especially with the online banking applications – you try logging in a couple of times and get your password wrong. Then the screen changes saying the account is locked out and you need to try again in XX minutes.

How to Block Access to All Data for Guest Users

Your application can use the Backendless API to access data, run searches, and store, update and delete objects in the database. When users authenticate themselves with the backend, all subsequent API calls are executed on the behalf of the logged-in user.

How to Define User Roles – An Essential Block to Securing Your App Data

In a Backendless backend, you can restrict access to API operations and/or application data. A restriction may apply either to specific users or to roles. When a restriction applies to a role, it automatically applies to the users in that role.