Use the Admin | Access screens to control access to the Cheetah Digital Loyalty Marketing Console and consumer-facing applications. These screens manageitems such as:
- Console Users. Manage the users who can login and operate the Cheetah Digital Loyalty Marketing Console
- Devices. Manage mobile devices known to the Cheetah Digital Loyalty Cloud Platform
- Oauth Applications. Manage the consumer-faicing and third-party applications that can access the Cheetah Digital Loyalty Cloud Platform
- Throttling. Manage the throttling settings for Cheetah Digital Loyalty API endpoints.
Using The Console Users Screen
Use the Access | Console Users screen to manage the users who have access to the Cheetah Digital Loyalty Marketing Console.
On this screen, you can:
- Create New Console Users. Enter a name, email address, and password for the new Console User. Then add the appropriate permissions for the new Console User.
- Search and View Existing Console Users. View a list of existing Console Users.
- Modify Profile and Permissions. Navigate to the Console Users detail screen to view and modify a Console Users’s profile and permissions.
- Delete An Existing Console User. Revoke access to the Cheetah Digital Loyalty Marketing Console by deleting the Console User.
Console User Profile
The Console User Profile includes the Console User’s name, email, public name, and public avatar image. You can also reset the Console User’s password by specifying new, matching values for the Console User’s password and password confirmation.
Console User Permissions
The Console User Permissions list all the Cheetah Digital Loyalty Marketing Console screens that a Console User has access to. This includes:
- Resource. The screen that the Console User has access to.
- Access. The privilege for the resource, such as:
- Read. The Console User has read access to the resource.
- Write. The Console User has read and write access to the resource.
- Admin. The Console User has read, write, and admin access to the resource.
You can also use several buttons on the Console Users screen to facilitate the setting up of privileges for the current Console User:
- Add Missing as Read. Add read privileges for all resources that the current Console User does not already possess.
- Add Missing as Write. Add write privileges for all resources that the current Console User does not already possess.
- Add Missing as Admin. Add admin privileges for all resources that the current Console User does not already possess.
- Remove All. Remove all privileges from the current Console User.
Using The Devices Screen
Use the Access | Devices screen to manage the mobile devices known to the Cheetah Digital Loyalty Cloud Platform for the purpose of sending push notifications.
You can view the following attributes for each Device:
- Member. Shows the full name and email address of the member who owns the Device.
- Device ID. Shows the unique identifier for the device.
- Platform. Specifies the platform for the device (e.g. Android, iOS, etc.)
- Created At. Shows the date when the device became known to the Cheetah Digital Loyalty Cloud Platform
If desired, you can use this screen to delete an existing Device, which will prevent the Cheetah Digital Loyalty Cloud Platform from sending subsequent push notifications.
Searching and Sorting
The Devices screen includes a variety of facilities to make it easy for you to search abd sort records.
- Searching. Use the Search text box to search records by member name, member email, device ID or platform.
- Sorting. Use the Sort dropdown to sort records by date created, date updated, or platform.
View Push Status
Click on the ‘View Push Status’ button to verify the configuration of the Cheetah Digital Loyalty Cloud Platform push notification services. A ‘Push Status’ dialog opens and verifies the connectivity to Amazon Web Services, including AWS access keys and Simple Notification Service (SNS) Application Resource Names (ARNs). If any of the items in the ‘Push Status’ dialog does not show a green check mark, then please contact your Cheetah Digital Loyalty Customer Success Team Member to resolve the configuration issue.
Using The Oauth Applications Screen
Use the Access | Oauth Applications screen to manage the access of mobile, web, and server applications to the Cheetah Digital Loyalty Cloud Platform. Oauth is a protocol that lets external apps–the *Client Applications**–request authorization to the Cheetah Digital Loyalty Cloud Platform. You can also use Oauth to monitor, manage, throttle, and revoke application access.
Each Oauth Application has the following attributes:
- Client ID. Enter a publicly exposed string to identify the client application.
- Client Secret. Enter a string to authenticate the identify of the client application when the client application authenticates with the Cheetah Digital Loyalty Cloud Platform. The client application must keep the Client Secret private between the client application and the Cheetah Digital Loyalty Cloud Platform. To enhance security, the Oauth Applications screen hides the Client Secret value by default. Click on the ‘Show Secret’ button to view the current of the Client Secret. Click on the ‘Regenerate Secret’ button if you need to create a new value for the Client Secret (e.g. when your Client Secret has been compromised).
- Redirect URI. Specify the address where the Cheetah Digital Loyalty Cloud Platform redirects the client application after a successful authorization.
- Scope. Specify ‘Member’ (for Member Api scope) or ‘Program’ (for Program API scope)
Using The Throttling Screen
Use the Access | Throttling screen to manage the throttling settings for Cheetah Digital Loyalty API endpoints. Throttling settings help prevent attackers from abusing or compromising the API endpoints by blocking access to the endpoint for a specified period of time.
For each Cheetah Digital Loyalty API endpoint, specify the following attributes to define the API endpoint’s throttling settings:
- Lock Time. Enter the number of seconds to lock out the incoming requests.
- Number of consecutive failures allowed. Enter the number of successive failures before throttling incoming requests.
- Error Message. Enter the error message to return to the caller of the api.
If the Cheetah Digital Loyalty API endpoint receives the number of consecutive failures in a row from the same source IP address, then the Cheetah Digital Loyalty Cloud Platform return the error message and prevents calls to the API endpoints for a specified number of lock time seconds.