Introduction to Security in the Kinetic Platform

Security in the Kinetic Platform is designed to give you flexible, layered control over who can access what and how they get in.

This section covers everything from how users authenticate into your Space (like passwords or single sign-on), to how you authorize access to forms, submissions, workflows, and APIs. Whether you're building for internal teams or external partners, Kinetic provides the tools you need to protect sensitive data and control platform behavior.

Key Concepts

• Authentication
  Confirms a user's identity. Examples include logging in with a password, LDAP credentials, or a Common Access Card (CAC).

• Authorization
  Determines what an authenticated user can do or see inside the platform, like submitting a form, updating a record, or triggering a workflow.

• Security Policies
  Rules that enforce access control at the form, kapp, space, and workflow level.

• Security Definitions
  Custom logic that governs how policies are applied, using JavaScript expressions to determine dynamic access.

• OAuth Clients & Trusted Domains
  Tools used to control secure, authenticated access for custom apps and external systems beneficial during development.

Who Should Read This

This section is intended for:

• Space Admins responsible for managing users, teams, and permissions
• Developers integrating with the platform or embedding Kinetic forms
• Security-conscious builders who want to ensure compliant access controls

Whether you’re enabling SSO, defining team-based access, or setting up an OAuth client for your app, you’ll find the guidance here.