Flow-Based Access Control

Introducing Flow-Based Access Control, designed to enhance integration and the authentication processes within Kissflow.

With Flow-Based Access Control (FBAC), administrators can whitelist specific data flows, eliminating the need for user authentication when configuring actions in integrations.

We have incorporated FBAC into security settings, revamping security settings across all apps and the platform.

Granular Controls: Flow admins can set granular controls for individual flows, overriding global permissions when configured. This provides precise control over which flows and fields can be accessed.

Permissions for Kissflow Artifacts: Admins can manage permissions for the Lookup, Integration and Impersonation artifacts from the security settings page.

Global Permissions: These general access rules apply to all flows within an account. Permissions are enabled by default for all artifacts except Integration and Impersonation, which can be managed through the Global Permissions section on the security settings page.

Lookup Field Selection: Admins can expose only a specific set of fields to a particular flow, enhancing security and data control.

Apps Behavior: App admins can link apps together and specify which fields from the source flow are accessible to the destination app, improving integration and data sharing.

Integration Flexibility: Integrations with third-party triggers, such as DocuSign and Webhooks, can be incorporated as workflows under custom permissions, enhancing flexibility and functionality. 

Dependency Alerts on Removing Access: When a flow admin revokes permission, a dependency dialog with a warning is displayed to the administrator.