A Backendless backend manages application’s users and may group them into roles which share some common security permissions. Application users and roles can also be referred to as ‘principals’. Files stored in the Backendless Hosting storage can be viewed as “subjects” on which application may perform various operations such as upload, download, deletion or execution (if the file is a Node.js script). A combination of a principal, subject and operation results in a triplet which is the core element of our security system. A triplet may be either granted or denied the permission to execute referenced operation on the subject by the principal.
Securing access to static and dynamic content residing in Backendless Hosting is one of the strongest features of the product. The hosting system is tightly integrated with the identity management function from the Backendless mBaaS product. You can establish a powerful and secure system of guarding access to your files either using the management console or the APIs.