Identity Management

Overview

Tangent Works Identity Management is used to validate API calls made to TIM v5 instances running outside of Tangent Works infrastructure. TIM v5 calls Identity Management API every time a user calls POST /auth/login or POST /auth/refresh-token. The response from Identity Management API contains information whether the user is authorized to use TIM v5 and if so, Identity Management provides additional information about the user.

The communication between TIM v5 and Identity Management is always encrypted (by HTTP over TLS). Passwords are never sent between TIM v5 and Identity Management.