From wiki.ginstr.com
Jump to: navigation, search
m (plugins)
 
(30 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
<div style="float:right; clear:both; margin-left:0.5em;">__TOC__</div>
 
<div style="float:right; clear:both; margin-left:0.5em;">__TOC__</div>
<span STYLE="font-size: xx-large">SSO Common Content</span>
+
[[File:ginstr_logo_main.png|84px|link=]]<span STYLE="font-size: xx-large">&nbsp;SSO Common Content</span>
[[Category:sso_manual]]
+
[[Category:SSO_manual]]
  
 
==Introduction and general points==
 
==Introduction and general points==
'''Single sign-on (SSO)''' is a property of access control of multiple related, but independent software systems. With this property a user logs in with a single ID and password to gain access to a connected system or systems without using different usernames or passwords, or in some configurations seamlessly sign on at each system.
+
'''Single Sign-On (SSO)''' is a property of access control of multiple related, but independent software systems. With this property a user logs in with a single ID and password to gain access to a connected system or systems without using different usernames or passwords, or in some configurations seamlessly sign on at each system.
This means that single page is used to log in to multiple applications which are enabled / disabled for each user account by supervisor admin based on software modules ordered from ginstr.
 
This multiple log in is ensured with common ticket which is added as post-fix in browser address of each application. (example https://my.ginstr.com/?ticket= here goes ticket number generated by SSO server)
 
In browser application opens in different browser tab always so that SSO server tab stay opened and user can easily operate in both SSO server tab and in opened application tab.
 
  
ginstr SSO server is located on address https://sso.ginstr.com/
+
This means that a single page is used to log in to multiple applications which are enabled/disabled for each user account, depending on which software modules have been ordered from ginstr.
  
 +
Each application opens in a separate browser tab so that the SSO server tab remains open, allowing the user to easily operate in both the [[#SSO_lobby|SSO server tab]] and individual application tabs simultaneously.
  
[[File:sso_log_in_page_items_explained.png|thumb|250px|none|SSO log in screen]]
+
'''ginstr SSO server''' is located at <code>https://sso.ginstr.com/</code>
  
 +
[[File:sso_login_screen.png|thumb|left|600px|SSO login screen at https://sso.ginstr.com/]]
 +
{|
 +
|
 +
|'''<u>Legend</u>'''
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">1</span></div>
 +
|[[#e-mail_field|'''e-mail''' field]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">2</span></div>
 +
|[[#password_field|'''password''' field]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">3</span></div>
 +
|[[#Signing_up_for_new_SSO_account|'''sign up!''' link]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">4</span></div>
 +
|[[#forgot_password|'''forgot password?''' link]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">5</span></div>
 +
|[[#login_button|'''log in''' button]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">6</span></div>
 +
|[[#FAQ|'''questions and answers (FAQ)''' link]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">7</span></div>
 +
|[[#Signing_up_with_Facebook_or_Google_account|'''facebook sign up''' button]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">8</span></div>
 +
|[[#Signing_up_with_Facebook_or_Google_account|'''Google sign up''' button]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">9</span></div>
 +
|'''[[#ginstr_Support_Chat|ginstr Support Chat]]'''
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">10</span></div>
 +
|[[#Language selection|'''Language selection''' drop down]]
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">11</span></div>
 +
|'''ginstr logo''' (linked to http://ginstr.com/)
 +
|-
 +
|<div style="display:inline-block;width:auto;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#ff8000"><span style="color:white;font-size:88%;font-weight:bold">12</span></div>
 +
|Info about current version of ginstr SSO server
 +
|-
 +
|
 +
|
 +
|}
 +
<br><br>
  
 +
----
  
In bottom right corner of SSO log in screen there is drop down with languages where user have possibility to choose language in which SSO content will be displayed ('''NOTE:''' Not all listed languages are supported yet. If user choose unsupported language then content will be displayed in English)
+
====e-mail field====
 +
:If you used an e-mail address to sign up, enter this e-mail address in the e-mail field. Before you can log in, you must confirm your registration by clicking on the link in the e-mail that you received after signing up (see [[#Activation|<u>here</u>]] for more details.
  
 +
====password field====
 +
:This field is for the password chosen during sign up associated with your ginstr iD email address entered above. If you have forgotten your password you can use the "[[#forgot_password?_button|forgot password?]]" button to assign a new password.
  
[[File:language_drop_down.png|thumb|250px|none|drop down menu with languages]]
+
[[File:register_form.png|thumb|250px|registration form to create new ginstr iD account]]
 +
====Signing up for new SSO account====
 +
:To register a new account on ginstr SSO, click on the ''''sign up!'''' link positioned above the e-mail field to display the form for registering a new ginstr iD (ginstr account).
  
 +
:The registration form consists of the following fields:
 +
:*e-mail (required field)
 +
:*password (required field)
 +
:*re-enter password (required field)
 +
:*first name (required field)
 +
:*last name (required field)
 +
:*mobile number (optional)
 +
:*company (optional)
 +
:*language (drop down)
  
Below log in form on right side of log in form there is link '''"questions and answers (FAQ)"''' which when clicked opens page with frequently asked questions where user can find some help regarding registration process and other content needed for start of work with ginstr platform
+
:'''NOTE:'''
 +
::Your ginstr account will be created in the language selected in the language drop down. Currently, not all listed languages are supported. If you select an unsupported language then content will be displayed in English.
  
 +
:The registration form also contains links to [[#FAQ|frequently asked questions]] and the [https://www.ginstr.com/privacy-protection/ ginstr Privacy Policy].
  
[[File:position_of_faq_link.png|thumb|250px|none|position of FAQ link on log in screen]]
+
[[File:mail_appearance.png|thumb|250px|appearance of ginstr iD activation e-mail]]
 +
:After filling all required fields and clicking the <div style="display:inline-block;width:160px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#66d9ff"><span style="color:#404040;font-size:88%;font-weight:bold">register</span></div> button, you will be taken to a page informing you that your account is now registered and that a confirmation e-mail has been sent to the e-mail account used for registration.
  
[[File:faq_page.png|thumb|250px|none|FAQ page]]
+
=====Activation=====
 +
:An activation e-mail will be sent from address '''notifications@ginstr.com''' with the subject ''''ginstr iD activation''''. This e-mail contains a link "'''Activate your ginstr iD'''" which must be clicked to activate your account. Upon successful activation, you will be taken to a page confirming that your ginstr iD is activated and you can now log in with the newly created ginstr iD & password at <code>https://sso.ginstr.com/</code>.
  
 +
:'''NOTE:'''
 +
::In case you do not receive the activation e-mail shortly after completing the registration form, please check your junk/spam folder
  
In case user doesn't find needed answer on FAQ page or in this manual then on right side of log in screen there is chat which when clicked opens chat window where user can chat directly with ginstr customer support.
+
====login button====
 +
:After entering your ginstr iD email address & password, press the <div style="display:inline-block;width:160px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#66d9ff"><span style="color:#404040;font-size:88%;font-weight:bold">log in</span></div> button to proceed to the [[#SSO_lobby|SSO lobby]].
  
 +
[[File:faq_page.png|thumb|250px|questions and answers (FAQ) page]]
 +
====FAQ====
 +
:Below the password field on the right side there is a '''"questions and answers (FAQ)"''' link which, when clicked, opens a page with frequently asked questions regarding the registration process and other content relevant to starting work with the ginstr SSO platform.
  
[[File:chat_position.png|thumb|250px|none|position of chat on SSO log in page]]
+
====Signing up with Facebook or Google account====
 +
:If you already have a Facebook or Google account then the two buttons below the <div style="display:inline-block;width:160px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#66d9ff"><span style="color:#404040;font-size:88%;font-weight:bold">log in</span></div> button allows you to log in to ginstr SSO with your existing Facebook or Google credentials.
 +
:If you are already logged in to Facebook or Google, you will be asked to grant access to ginstr.
 +
:If you are not already logged in to Facebook or Google, you will be asked for authorisation.
  
 +
====forgot password====
 +
:If you have forgotten your password you can use the "'''forgot password?'''" link to assign a new password. This link is located on right side of log in form under the password field.
  
If user already have Facebook or Google account then in this case below log in form on left side of log in form there are two buttons which allow user to log in to ginstr SSO with their existing Facebook or Google accounts. Once click on this buttons if not logged in to Facebook or Google user will be asked for authorization and if already logged in user will be asked to grant access to ginstr.
+
:On the password reset screen, enter the e-mail address used for registration and click on the ''''reset password'''' button and an e-mail with instructions will be sent to that e-mail address.
  
 +
[[File:language_drop_down.png|thumb|250px|Language selection drop down]]
 +
====ginstr Support Chat====
 +
:If you have a question which is not answered in the [[#FAQ|FAQ page]] or in this manual, clicking the ''''Chat now'''' button on the right side of log in screen opens a chat window where you can chat directly with ginstr customer support.
  
[[File:facebook_google_position.png|thumb|250px|none|position of Facebook and Google log in buttons on SSO log in page]]
+
====Language selection====
 +
:In the bottom right corner of the SSO log in screen there is a drop down selection which allows you to select the language in which SSO content will be displayed.
  
 +
:'''NOTE:'''
 +
::Currently, not all listed languages are supported. If an unsupported language is selected then content will be displayed in English.
  
In case user forgot password there is link to screen for resetting password. Link is called "forgot password?" and is located on right side of log in form under password field.
+
==SSO lobby==
Once user enter screen for password reset there can enter e-mail used for registration and after click on reset password button e-mail with instructions will be sent to that e-mail address.
+
Once logged in to ginstr SSO, the default set of applications icons will be displayed in the SSO lobby.
  
[[File:reset_pass_position.png|thumb|250px|none|position of link which opens page to reset password]]
+
[[File:default_apps_lobby.png|thumb|250px|default applications icons in the SSO lobby]]
 +
These default applications are:
 +
:;ginstr home page: opens <code>https://www.ginstr.com/</code>
 +
:;ginstr web: opens [[ginstr web]] client which contains tables where the master data for ginstr applications is defined and where data sent from ginstr applications is stored
 +
:;OpenCellID: opens OpenCellID application
  
 +
Upon clicking on the [[ginstr web]] icon for the first time, you will be asked to accept the ''''Conditions of Use for ginstr Applications''''. After accepting these conditions of use, they will not appear again on launching of [[ginstr web]] application.
  
To register new account on ginstr SSO user should click on "sign up!" link positioned on top right side of log in form above e-mail field
+
:'''NOTE:'''
 +
::Even though your account is now activated, you will not be able to use [[ginstr web]] without first purchasing some ginstr subscription from the '''[https://shop.ginstr.com/produkt-kategorie/subscriptions/ ginstr shop]''' <code>error (1017) ginstr is disabled</code>
  
[[File:signup_position.png|thumb|250px|none|position of sign up link]]
+
[[File:ginstr_lobby_name_topRH.png|thumb|250px|User name at top right-hand corner of the lobby]]
 +
===SSO lobby menu===
 +
[[File:contact_form.png|thumb|250px|contact form appearance]]
 +
[[File:private_app_section.png|thumb|500px|configure private applications page]]
  
==Signing up for new SSO account ==
+
Your user name is displayed at the top right corner of the SSO lobby screen when logged in. When you hover the mouse over this user name, a drop down menu opens.
Once user click on sign up! link on log in page of ginstr SSO a page with form for registering new ginstr iD (ginstr account) will open.
 
  
This form have following fields:
+
:Items in this menu are:
*e-mail (required field)
+
:*[[#contact_form|contact form]]
*password (required field)
+
:*[[#questions_and_answers_(FAQ)|questions and answers (FAQ)]]
*re-enter password (required field)
+
:*[[#configure_private_applications|configure private applications]]
*first name (required field)
+
:*[[#my_account|my account]]
*last name (required field)
+
:*[[#conditions_of_use|conditions of use]]
*mobile number (optional)
+
:*[[#imprint|imprint]]
*company (optional)
+
:*[[#privacy_policy|privacy policy]]
 +
:*[[#log_out|log out]]
  
Also there is drop down with languages. Account will be created in language which is selected in this drop down (if language not supported yet if will be created in English language)
+
====contact form====
There are also links that open page with frequently asked questions and page with privacy policy on ginstr web site.
+
:Opens page with contact form that enables you to contact ginstr support via e-mail
  
[[File:register_form.png|thumb|250px|none|appearance of form for registering new ginstr iD]]
+
:In this form all fields must be filled before clicking the <div style="display:inline-block;width:120px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#66d9ff"><span style="color:#404040;font-size:88%;font-weight:bold">send</span></div> button.
  
 +
====questions and answers (FAQ)====
  
Once fill all required fields and click on "register" button user will be taken to page with info that account is registered and that confirmation e-mail is sent to e-mail account that was used for registration.
+
:Opens the [[#FAQ|frequently asked questions]] page
e-mail will be sent from address notifications@ginstr.com and will be titled ginstr iD activation (please check spam folder in case e-mail not appears in inbox folder shortly)
 
and will contain link "Activate your ginstr iD" which when clicked will activate your account.
 
  
 +
====configure private applications====
  
[[File:mail_appearance.png|thumb|250px|none|appearance of ginstr iD activation e-mail]]
+
:Displays private applications created by user.
 +
:Private applications are only visible to their owner.
 +
:Here you can view information on each private application and have the option to permanently '''remove''' each private application from the server.
  
Clicking "Activate your ginstr iD" link will take you to page where it will be confirmed that ginstr iD is activated and which will enable user to log in with newly created ginstr iD on ginstr SSO log in page.
+
====my account====
  
 +
:Opens the [[#My_account_page|my account]] page containing settings related to your user account. See <u>[[#My_account_page|here]]</u> for more information.
  
==SSO lobby ==
+
[[File:conditions_of_use.png|thumb|250px|conditions of use for ginstr applications]]
Once log in to ginstr SSO default set of applications icons will be displayed in SSO lobby.
+
====conditions of use====
This applications are:
 
  
*ginstr home page - opens https://www.ginstr.com/
+
:When you hover your mouse over this menu item, a sub-menu appears.
*ginstr web - opens ginstr web client which contains tables where master data for ginstr applications is defined and where data sent from ginstr applications is stored
+
:Clicking on the ''''ginstr web'''' sub-menu item displays the ''''Conditions of Use for ginstr Applications'''' which you agreed to upon launching the [[ginstr web]] application from SSO lobby for the first time.
*OpenCellID - opens OpenCellID application
 
  
 +
====imprint====
  
[[File:default_apps_lobby.png|thumb|250px|none|default applications icons in SSO lobby]]
+
:Click on this menu item to open the [https://www.ginstr.com/imprint/ imprint page] on the [https://www.ginstr.com/ ginstr web site]
  
When click on ginstr web icon user will be asked to accept "Conditions of Use for ginstr Applications". This will be required to do only once and when user accept this conditions of use they will not appear again on launching of ginstr web application.<br>
+
====privacy policy====
'''NOTE:''' Even though account is now activated user will not be able to use ginstr web but will get error message "(1017) ginstr is disabled" until buy some ginstr subscription from ginstr shop https://shop.ginstr.com/produkt-kategorie/subscriptions/
 
  
In top right corner in SSO lobby there is user name displayed. When mouse over this user name drop down menu opens.<br>
+
:Click on this menu item to open the [https://www.ginstr.com/privacy-protection/ privacy protection page] on the [https://www.ginstr.com/ ginstr web site]
  
 +
====log out====
  
[[File:lobby_menu.png|thumb|250px|none|lobby menu position and appearance]]
+
:Click on this menu item to log out of ginstr SSO and return to the SSO log in screen
 
 
 
 
Items in this menu are:
 
*contact form
 
*questions and answers (FAQ)
 
*my account
 
*conditions of use
 
*imprint
 
*privacy policy
 
*log out
 
 
 
 
 
 
 
===contact form===
 
 
 
When click on this menu item then opens page with contact form that enables user to contact ginstr support via e-mail
 
 
 
[[File:contact_form.png|thumb|250px|none|contact form appearance]]
 
 
 
In this form all fields are required to be filled.
 
 
 
 
 
===questions and answers (FAQ)===
 
 
 
When click on this menu item then opens page with frequently asked questions
 
 
 
 
 
===my account===
 
 
 
When click on this menu item opens page for settings related to account. This page will be described in details later
 
 
 
[[File:my_account.png|thumb|250px|none|my account page]]
 
 
 
 
 
===conditions of use===
 
 
 
When mouse over this menu item then sub menu item ginstr web appears. When click on that ginstr web sub menu item then page opens with displayed conditions of use for ginstr applications (same conditions of use which are displayed on first start of ginstr web application from SSO lobby)
 
 
 
[[File:conditions_of_use.png|thumb|250px|none|conditions of use for ginstr applications]]
 
 
 
 
 
===imprint===
 
 
 
When click on this menu item opens imprint page on ginstr web site https://www.ginstr.com/imprint/
 
 
 
 
 
===privacy policy===
 
 
 
When click on this menu item opens the privacy protection page on ginstr web site https://www.ginstr.com/privacy-protection/
 
 
 
 
 
===log out===
 
 
 
When click on this menu item then user gets logged out and return to SSO log in screen
 
 
 
  
 
==My account page==
 
==My account page==
 
 
This page contains multiple sections:
 
This page contains multiple sections:
 
+
*[[#my_account|my account]]
*my account
+
**[[#general|general]]
**general
+
**[[#hide/show_content|hide/show content]]
**hide/show content
+
*[[#subaccounts|subaccounts]]
*subaccounts
+
*[[#roles|roles]]
*roles
+
*[[#plugins|plugins]]
 
+
[[File:my_account.png|thumb|500px|my account page]]
[[File:my_account_details.png|thumb|250px|none|my account page structure]]
 
 
 
 
===my account===
 
===my account===
  
This section contains two sub sections: '''general''' and '''hide/show content'''
+
This section contains two sub-sections: '''[[#general|general]]''' and '''[[#hide/show_content|hide/show content]]'''
 
 
====general====
 
 
 
In this section are displayed all details related to account and here this details can be modified
 
 
 
[[File:general_details.png|thumb|250px|none|general section]]
 
 
 
Following items are present in general section:
 
 
 
*account
 
*role
 
*account status
 
*language
 
*e-mail
 
*password
 
*re-enter password
 
*NFC
 
*first name
 
*last name
 
*mobile number
 
*company (optional)
 
*disable chat support
 
*delete all data of all tables in this account older than (days)
 
*maximum number of rows that can be displayed in each table
 
 
 
 
 
 
 
'''account'''
 
 
 
Here is displayed username. This item is not editable
 
 
 
 
 
 
 
'''role'''
 
 
 
Here is displayed SSO role of account. This item is not editable
 
 
 
 
 
'''account status'''
 
 
 
Here is displayed status of account (active, suspended, deleted). This item is not editable
 
 
 
 
 
'''language'''
 
 
 
Here user can choose language in which SSO content will be displayed. Currently supported languages are English, German, Spanish, French, Hebrew and Arabic.
 
After language is selected in drop down user should click on "Apply" button at the end of general section in order to apply change of language
 
 
 
 
 
'''e-mail'''
 
 
 
Here user can enter personal or company e-mail.
 
 
 
 
 
'''password and re-enter password'''
 
 
 
These two fields are used to change current password. In order to change password user must enter new password in both password and re-enter password fields and after that click on "Apply" button at the end of general section. New password must contain at least one digit, one uppercase letter and not less than 8 symbols.
 
 
 
 
 
'''NFC'''
 
 
 
In this filed user can enter NFC tag id which will be then used for this user to log in to ginstr apps on Android devices by scanning that NFC tag.
 
 
 
 
 
'''first name and last name'''
 
 
 
In these fields user can modify first and last name which were entered on account creation.
 
 
 
 
 
'''mobile number'''
 
 
 
In this field user can enter private or company mobile number
 
 
 
 
 
'''company (optional)'''
 
 
 
In this field user can enter name of company
 
 
 
  
'''disable chat support'''
+
:<span id="general">'''general'''</span>
  
By checking this checkbox user will disable support chat and chat window will not be displayed in both SSO and ginstr web
+
:This section displays all details related to your user account, some of which are editable.
  
 +
:The '''general''' section consists of the following items:
  
'''delete all data of all tables in this account older than (days)'''
+
::;account: Your ginstr iD user name is displayed here. This item is not editable
  
In this field user can define for how long data in all tables of all applications enabled for that account will be kept. Default value is 0 which means that data will be kept in tables forever. Value must be positive number. Maximal value is 999. After set desired value user must click on "Apply" button at the end of general section in order to apply changes.
+
::;role:The SSO role of your account is displayed here. This item is not editable
  
 +
::;account status: The status of your account (active, suspended, deleted) is displayed here. This item is not editable
  
'''maximum number of rows that can be displayed in each table'''
+
::;language: Allows you to select the language in which SSO content will be displayed. Currently supported languages are English, German, Spanish, French, Hebrew and Arabic.
 +
:::After selecting your preferred display language in the drop down, click the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">apply</span></div> button at the end of the '''general''' section to apply the language change.
  
Here user can define how much rows can be displayed in table before "filter by record creation date" appears in table. Once defined number of records is reached in some table then records in table will be grouped based on record creation date. This number of records is defined on browser and server level.
+
::;e-mail: In this field you can enter your personal or company e-mail.
  
 +
::;password and re-enter password: These two fields are used to change the current password.
 +
:::In order to change your password, you must enter the same new password in both '''password''' and '''re-enter password''' fields before clicking on the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">apply</span></div> button at the end of the '''general''' section.
 +
:::The new password must contain at least one number, one uppercase letter and not less than 8 characters.
  
 +
::;<span id="NFC">NFC</span>: In this field you can enter an [[NFC#NFC_Tags|NFC tag]] id, allowing you to log in to ginstr apps by scanning this [[NFC#NFC_Tags|NFC tag]] on Android devices with built-in [[NFC]] technology.
  
 +
::
  
====hide/show content====
+
::;first name and last name: In these fields you can modify first and last name which were entered on account creation.
  
 +
::;mobile number: In this field you can enter your personal or company mobile number.
  
In this section is displayed list of applications, list of application tables with option to change permissions on those tables and section where user can assign or unassign records that exist in table. Also in this section user can set amount of days after which data will be deleted from tables on app and table level.
+
::;company (optional): In this field you can enter the name of your company.
  
 +
::;disable chat support: This checkbox disables [[#ginstr_Support_Chat|support chat]] so that the chat window will no longer be displayed in either SSO or [[ginstr web]].
  
[[File:hideshow_section.png|thumb|250px|none|hide/show content section]]
+
::;<span id="delete_all_data">delete all data</span> of all tables in this account older than (days): In this field you can define how long the data in all tables of all applications enabled for your account will be kept.
 +
:::Default value is 0 which means that data will be kept in tables forever.
 +
:::Value must be positive number up to a maximum of 999 days.
 +
:::After entering the desired value, click the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">apply</span></div> button at the end of the '''general''' section to apply the change.
  
 +
::;maximum number of rows that can be displayed in each table: Here you can define how many rows can be displayed in each [[ginstr web]] table before ''''filter by record creation date'''' appears in table. Once the defined number of records is reached in a table, the records in the table will be grouped based on record creation date. This number of records is defined on browser and server level.
  
Following parts exist in this section:
+
:<span id="hide/show content">'''hide/show content'''</span>
 +
[[File:hideshow_section.png|thumb|700px|hide/show content section]]
 +
:This section consists of a list of application tables with option to change permissions on each table and a section where you can assign or unassign records that exist in table.
  
*list of ginstr applications
+
:The '''hide/show content''' section consists of the following items:
*list of tables of selected ginstr application
 
*list of records in selected table
 
*interface for defining how much days to keep records in tables on application and table level
 
  
 +
::;list of ginstr applications: Here you will be shown a list of names of all ginstr applications which are enabled for your account.
  
'''list of ginstr applications'''
+
::;list of tables of selected ginstr application: When you click on one or more application names in the ''''list of ginstr applications'''', then all tables of the selected application(s) are displayed in the ''''list of tables of selected ginstr application''''.
 +
:::For each table there are four permissions displayed: <code>create</code>, <code>read</code>, <code>update</code> and <code>delete</code> (CRUD permissions). By clicking on the name of a permission, you can either enable or disable that permission for the selected table.
 +
:::There is also the option to select a table and then click on the ''''<u>activate all</u>'''' link above the list of tables and activate all permissions on the selected table.
 +
:::*If <code>create</code> permission is enabled on a table, this means that user will be able to create new records in that table
 +
:::*If <code>read</code> permission is enabled on a table, this means that user will be able to see that table in [[ginstr web]]
 +
:::*If <code>update</code> permission is enabled on a table, this means that user will be able to modify existing records in table
 +
:::*If <code>delete</code> permission is enabled on a table, this means that user will be able to delete records from that table in [[ginstr web]]
  
In this part are displayed names of all ginstr applications which are enabled for that account
+
::;list of records in selected table: When you select some table in the ''''list of tables of selected ginstr application'''', then a ''''list of records in selected table'''' appears with the option to assign/unassign existing records in table.
 +
:::When records are added to a table they are assigned by default and they are listed in the form of record id's in the <code>ASSIGNED</code> list.
 +
:::If you click on some id in the <code>ASSIGNED</code> list then that id moves to the <code>NOT ASSIGNED</code> list on the left side.
 +
:::When you click on the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">apply</span></div> button above the <code>ASSIGNED</code> list, changes will be saved and the record which is moved to the <code>NOT ASSIGNED</code> list will not be displayed in the selected table in [[ginstr web]].
  
'''list of tables of selected ginstr application'''
+
::;interface for defining how much days to keep records in tables on application and table level: Above the ''''list of tables of selected ginstr application'''' and ''''list of records in selected table'''' there are fields where you can define how long data in all app tables or in single app table will be kept.
  
When user click on some application name in "list of ginstr applications" part then all tables of selected application are displayed in "list of tables of selected ginstr application". For each table there are displayed following permissions : create, read, update and delete (CRUD permissions). Here user have option that by clicking on link with name of some permission either enable or disable that permission for certain table. Also user have option to select table and then click on "activate all" link above list of table and activate all permissions on selected tables.
+
:::This feature exists on 3 levels
If create permission is enabled on table this means that user will be able to create new records in that table. If read permission is enabled on table this means that user will be able to see that table in ginstr web. If update permission is enabled on table this means that user will be able to modify existing records in table. If delete permission is enabled on table his means that user will be able to delete records from that table in ginstr web
+
:::#'''all applications''' level (which exists in the [[#general|'''general''' section]] and is described [[#delete_all_data|<u>here</u>]])
 +
:::#'''single application''' level - this field exists above the ''''list of tables of selected ginstr application'''' and when some number of days is defined there, data in all tables of that app will be kept for the defined number of days before being deleted.
 +
:::#'''single table''' level - this field exists above the ''''list of records in selected table'''' and when some number of days is defined there, data in that particular table will be kept for the defined number of days before being deleted.
  
'''list of records in selected table'''
+
:::'''General rule:''' If an amount of days is defined on level 1, then this amount of days will be applied on levels 2 and 3 for all apps. If an amount of days is defined on level 2 for some app, then this amount of days will be applied on level 3 for all tables of that app and for all other apps (and the tables therein) the amount of days defined on level 1 will still apply. If an amount of days is defined on level 3 for some table then this amount will be applied for that table only and all other tables of that application will have amount of days defined on level 2 of that application.
  
When user select some table in "list of tables of selected ginstr application" part then "list of records in selected table" part appears with option to assign/unassign existing records in table.
+
===subaccounts===
When records are added to table they are assigned by default and they are listed in form of record id's in ASSIGNED list. If user click on some id in ASSIGNED list then that id moves to NOT ASSIGNED list on left side. When user click on "apply" button above ASSIGNED list then changes will be saved and record which is moved to NOT ASSIGNED list will not be displayed in table in ginstr web .
+
[[File:subaccount_section.png|thumb|700px|subaccounts section]]
 +
In this section a main account user can create subaccounts. The amount of subaccounts which can be created by the main account user is defined based on your [https://shop.ginstr.com/produkt-kategorie/subscriptions/ ginstr subscription].
  
'''interface for defining how much days to keep records in tables on application and table level'''
+
The main account is also called the 'company' account which means that, for example if a company has 10 workers which will be using application they will need to create 10 subaccounts on their main ('company') account, one for each worker that needs to log in to the application.
  
Above "list of tables of selected ginstr application" part and "list of records in selected table" part there are fields where user can define how long data in all app tables or in single app table will be kept. This feature exists on 3 levels <br>1. all applications level (which exist in general section and is described there)<br> 2. single application level - this field exist above "list of tables of selected ginstr application" part and when some number of days is defined there data in all tables of that app will be kept for that number of days and after that deleted<br> 3. single table level - this field exist above "list of records in selected table" part and when some number of days is defined there data in that particular table will be kept for that number of days and after that deleted.  
+
The main account is used as an administrator for subaccounts created by that main account and can choose which applications each subaccount can use and which permission the subaccount will have for each table. The main account user can also delete subaccounts they have previously created.
<br> General rule is: If define amount of days on level 1 then same amount of days will be applied on levels 2 and 3 for all apps. If define amount of days for some app on level 2 then same amount of days will be applied on level 3 for all tables of that app and for all other apps (and those apps tables) will be still applied amount of days defined on level 1. If define amount of days for some table on level 3 then this amount will be applied for that table only and all other tables of that application will have amount of days defined on level 2 of that application .
 
  
 +
The '''subaccounts''' section consists of the following items:
  
 +
:;interface to add new subaccount and list of existing subaccount: When you click on the "add subaccount" button at the top of this section, an interface will open where used can enter required data to create new subaccount.
 +
::*In the ''''e-mail'''' field you should define the e-mail address which will be used as username of new subaccount.
 +
::*In the ''''password'''' field you should define the password which will be used by new subaccount for logging in. Under this field there is a checkbox labelled "show password" which, when checked will display the password in plain text.
 +
::*In the ''''NFC'''' field you can define the [[NFC#NFC_Tags|NFC tag]] id which can be used by that new subaccount to log in to ginstr launcher and ginstr apps.
 +
::*In the ''''role'''' drop down you can select some of the [[#roles|roles]] which can be created by user. More information on [[#roles|roles]] can be found [[#roles|<u>here</u>]].
 +
::*In the ''''applications'''' drop down you can select which applications will be enabled for subaccount
 +
::*In the ''''access status'''' drop down you can select between active and suspended status. You can create an unlimited number of subaccounts with suspended status but the number of subaccounts with active status is dependant on your [https://shop.ginstr.com/produkt-kategorie/subscriptions/ ginstr subscription]. Only active subaccounts will be possible to use [[ginstr web]] and ginstr apps.
 +
::*In the ''''idle timeout (hh:mm)'''' field you can define amount of time, after which subaccount will be logged out if inactive. Value should be set in range 00:20-24:00
 +
::*The '''''creating subaccounts allowed''''' checkbox, if checked, allows subaccount to create its own subaccounts (<u>This option is not yet supported</u>)
 +
::*The ''''user can use ginstr apps'''' and ''''user can use ginstr backend'''' checkboxes allow the main account to define whether or not each subaccount will be able to use ginstr web and/or ginstr apps.
 +
::Once all data is filled and the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">add</span></div> button is clicked, the newly created subaccount appears in this section.
 +
::In the list of existing subaccounts, the main user has the option to ''''<u>show settings</u>'''', which opens the interface to edit existing subaccount or delete existing subaccount by clicking the [[File:delete_icon.png]] button.
  
====subaccounts====
+
:;list of applications enabled for selected subaccount: This section displays the names of all ginstr applications which are enabled for that subaccount
  
In this section main account user can create subaccounts. Amount of subaccounts which can be created by main user is defined based on ginstr subscription. Main account is also called company account which means that for example if company have 10 workers which will be using application they will need to create 10 subaccounts on their main (company) account for each worker which will need to log in to application. Main account is like administrator for subaccounts created by that main account and can choose which applications subaccount can use and which permission will subaccount have on tables. Main account user can also delete subaccount created by that main account user.
+
:;list of tables for selected applications:This part is as described in [[#hide/show_content|hide/show content section]].
 +
::When you click on an application name in the ''''list of ginstr applications'''' then all tables of selected application are displayed in the ''''list of tables of selected ginstr application''''.
 +
::For each table there are four permissions displayed: <code>create</code>, <code>read</code>, <code>update</code> and <code>delete</code> (CRUD permissions). By clicking on the name of a permission, you can either enable or disable that permission for the selected table.
 +
::There is also the option to select a table and then click on the ''''<u>activate all</u>'''' link above the list of tables and activate all permissions on the selected table.
 +
::*If <code>create</code> permission is enabled on a table, this means that user will be able to create new records in that table
 +
::*If <code>read</code> permission is enabled on a table, this means that user will be able to see that table in [[ginstr web]]
 +
::*If <code>update</code> permission is enabled on a table, this means that user will be able to modify existing records in table
 +
::*If <code>delete</code> permission is enabled on a table, this means that user will be able to delete records from that table in [[ginstr web]]
 +
::The main difference is that in [[#hide/show_content|hide/show content section]] tables are created with enabled permissions and in subaccount section tables are created without permissions so that the main user can define permissions on tables for subaccount.
 +
::Both main account and subaccount are using the same tables of applications so there are not two set of tables but only different permissions on the same tables.
  
[[File:subaccount_section.png|thumb|250px|none|subaccounts section]]
+
:;list of records in selected table:This part is same as described in [[#hide/show_content|hide/show content section]].
 +
::When you select some table in the ''''list of tables of selected ginstr application'''' then a ''''list of records in selected table'''' appears with option to assign/unassign existing records in table.
 +
::When records are added to a table they are assigned by default and they are listed in the form of record id's in the <code>ASSIGNED</code> list.
 +
::If you click on some id in the <code>ASSIGNED</code> list then that id moves to <code>NOT ASSIGNED</code> list on left side.
 +
::When you click on the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">apply</span></div> button above the <code>ASSIGNED</code> list, changes will be saved and the record which is moved to the <code>NOT ASSIGNED</code> list will not be displayed in the selected table in [[ginstr web]].
 +
::Since same tables are used for both main account and subaccount records created by main account and all existing subaccounts of that main account will be displayed in this section but it can be defined per each subaccount here which records will be displayed in table for that particular subaccount
  
 +
===roles===
 +
[[File:roles_section.png|thumb|700px|roles section]]
 +
In this section you can define different roles that can be assigned for each subaccount. Roles are templates of permissions and records assignments for apps and if a role is assigned to some subaccount then tables permissions and records assignments defined in that role will be applied on that subaccount for any app enabled for that subaccount in the [[#subaccounts|'''subaccounts''' section]].
  
This section contains of following parts:
+
Once a role is created, it can be assigned to each subaccount (new or existing) in the interface for adding/editing subaccounts. In the [[#subaccounts|'''subaccounts''' section]], each subaccount can be assigned a role by clicking ''''<u>show settings</u>'''', selecting the desired role in the roles drop down and clicking the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">update</span></div> button to save changes. This role will be applied to the  applications assigned to that subaccount in the ''''applications'''' drop down.
  
*interface to add new subaccount and list of existing subaccount
+
The '''roles''' section consists of the following items:
*list of applications enabled for selected subaccount
 
*list of tables for selected applications
 
*list of records in selected table
 
  
 +
:;interface to add new role and list of existing roles: When you click on the ''''add role'''' button, the interface for adding a new role opens with ''''enter role name'''' and ''''enter description'''' fields. Once you fill these fields and click on the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">add</span></div> button, the new role is created and displayed in the list of existing roles.
 +
::Existing role has an option to ''''show settings'''' which, when clicked enables you to edit the name and description of a role, a [[File:delete_icon.png]] button, which when clicked enables you to delete existing row and there are names displayed and total number of subaccounts assigned to that role.
  
'''interface to add new subaccount and list of existing subaccount'''
+
:;list of applications enabled for main account: When you click on an existing role then a list of all applications enabled for the main account will appear on the right side of the screen.
  
When user click on "add subaccount" button on top of this section then interface will open where used can enter required data to create new subaccount. <br>In e-mail filed user should define e-mail which will be used as username of new subaccount. <br>In password field user should define password which will be used by new subaccount for logging in. Under this field there is checkbox "show password" which when checked will display password in text format.<br> In NFC field user can define NFC tag id which can be used by that new subaccount to log in to ginstr launcher and ginstr apps.<br>In role drop down user can select some of roles which can be created by user and will be described in next section. <br>In applications drop down user can select which applications will be enabled for subaccount<br>In access status drop down user can select between active and suspended status. User can create unlimited number of subaccounts with suspended status but only that much subaccounts with active status as have allowed by ginstr subscription. Only active subaccounts will be possible to use ginstr web and ginstr apps.<br>In idle timeout (hh:mm) field user can define amount of time after which if inactive subaccount will be logged out. Value should be set in range 00:20-24:00<br>creating subaccounts allowed checkbox if checked allows subaccount to create its own subaccounts. This option is not yet supported<br>user can use ginstr apps and user can use ginstr backend checkboxes allow main account to define if subaccount will be able to use ginstr web and/or ginstr apps.<br>Once all data filled when click on add button newly created subaccount appears in this section.<br>In list of existing subaccounts main user have option in list to click on show settings link which opens interface to edit existing subaccount or can click on trash can icon which will delete existing subaccount
+
:;list of tables for selected applications: When you click on some of the applications from the list of applications enabled for the main account, then all tables of that selected app will appear in the list of tables for selected applications. Tables are initially displayed without any permissions enabled so that user can define permissions.
 +
::For each table there are four permissions displayed: <code>create</code>, <code>read</code>, <code>update</code> and <code>delete</code> (CRUD permissions). By clicking on the name of a permission, you can either enable or disable that permission for the selected table.
 +
::There is also the option to select a table and then click on the ''''<u>activate all</u>'''' link above the list of tables and activate all permissions on the selected table.
 +
::*If <code>create</code> permission is enabled on a table, this means that user will be able to create new records in that table
 +
::*If <code>read</code> permission is enabled on a table, this means that user will be able to see that table in [[ginstr web]]
 +
::*If <code>update</code> permission is enabled on a table, this means that user will be able to modify existing records in table
 +
::*If <code>delete</code> permission is enabled on a table, this means that user will be able to delete records from that table in [[ginstr web]]
 +
::Permissions defined here will be applied on subaccount if that role is assigned to subaccount and it will override permissions defined directly on subaccount in subaccounts section
  
'''list of applications enabled for selected subaccount'''
+
:;list of records in selected table: When records are added to a table they are assigned by default and they are listed in the form of record id's in the <code>ASSIGNED</code> list.
 +
::If you click on some id in the <code>ASSIGNED</code> list then that id moves to the <code>NOT ASSIGNED</code> list on the left side.
 +
::When you click on the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">apply</span></div> button above the <code>ASSIGNED</code> list, changes will be saved and the record which is moved to the <code>NOT ASSIGNED</code> list will not be displayed in the selected table in [[ginstr web]].
 +
::Assignments of records defined here will be applied on subaccount if that role is assigned to subaccount and it will override assignments of records defined directly on subaccount in subaccounts section.
  
In this part are displayed names of all ginstr applications which are enabled for that subaccount
+
===plugins===
 +
[[File:plugins_section.png|thumb|400px|plugins section]]
 +
[[Plugins]] handle certain complex functionalities which cannot be handled in any other way (for example executing some calculations based on data in two separate tables, or sending e-mails based on data which requires certain information from different tables of an app etc..)
  
'''list of tables for selected applications'''
+
The '''plugins''' section of the SSO 'My account page' displays a list of all [[plugins]] installed for the currently logged in SSO account.
  
This part is same as described in hide/show content section.<br>
+
Settings pertaining to each installed [[Plugins|plugin]] can be accessed by clicking on the <u>show settings</u> link below each [[Plugins|plugin]] name.
When user click on some application name in "list of ginstr applications" part then all tables of selected application are displayed in "list of tables of selected ginstr application". For each table there are displayed following permissions : create, read, update and delete (CRUD permissions). Here user have option that by clicking on link with name of some permission either enable or disable that permission for certain table. Also user have option to select table and then click on "activate all" link above list of table and activate all permissions on selected tables.
 
If create permission is enabled on table this means that user will be able to create new records in that table. If read permission is enabled on table this means that user will be able to see that table in ginstr web. If update permission is enabled on table this means that user will be able to modify existing records in table. If delete permission is enabled on table his means that user will be able to delete records from that table in ginstr web<br> Main difference is that in hide/show content section tables are created with enabled permissions and in subaccount section tables are created without permissions so that main user can define permissions on tables for subaccount. <br> Both main account and subaccount are using same tables of applications so there are no two set of tables but only different permissions on same tables.
 
  
'''list of records in selected table'''
+
There is also a checkbox which can be used to enable/disable each [[Plugins|plugin]] as required.
  
This part is same as described in hide/show content section.<br>
+
To save modified [[Plugins|plugin]] settings, click on the <div style="display:inline-block;width:60px;height:auto;text-align:center;padding:0px 4px;vertical-align:middle;-moz-border-radius:3px;-webkit-border-radius:3px;border-radius:3px;background-color:#33CCFF"><span style="color:white;font-size:88%;font-weight:bold">update</span></div> button.
When user select some table in "list of tables of selected ginstr application" part then "list of records in selected table" part appears with option to assign/unassign existing records in table.
 
When records are added to table they are assigned by default and they are listed in form of record id's in ASSIGNED list. If user click on some id in ASSIGNED list then that id moves to NOT ASSIGNED list on left side. When user click on "apply" button above ASSIGNED list then changes will be saved and record which is moved to NOT ASSIGNED list will not be displayed in table in ginstr web .<br> Since same tables are used for both main account and subaccoount records created by main account and all existing subaccoutns will be displayed in this section but it can be defined per each subaccount here which records will be displayed in table for that particular subaccount
 

Latest revision as of 13:51, 3 September 2018

ginstr logo main.png SSO Common Content

Introduction and general points

Single Sign-On (SSO) is a property of access control of multiple related, but independent software systems. With this property a user logs in with a single ID and password to gain access to a connected system or systems without using different usernames or passwords, or in some configurations seamlessly sign on at each system.

This means that a single page is used to log in to multiple applications which are enabled/disabled for each user account, depending on which software modules have been ordered from ginstr.

Each application opens in a separate browser tab so that the SSO server tab remains open, allowing the user to easily operate in both the SSO server tab and individual application tabs simultaneously.

ginstr SSO server is located at https://sso.ginstr.com/

SSO login screen at https://sso.ginstr.com/
Legend
1
e-mail field
2
password field
3
sign up! link
4
forgot password? link
5
log in button
6
questions and answers (FAQ) link
7
facebook sign up button
8
Google sign up button
9
ginstr Support Chat
10
Language selection drop down
11
ginstr logo (linked to http://ginstr.com/)
12
Info about current version of ginstr SSO server




e-mail field

If you used an e-mail address to sign up, enter this e-mail address in the e-mail field. Before you can log in, you must confirm your registration by clicking on the link in the e-mail that you received after signing up (see here for more details.

password field

This field is for the password chosen during sign up associated with your ginstr iD email address entered above. If you have forgotten your password you can use the "forgot password?" button to assign a new password.
registration form to create new ginstr iD account

Signing up for new SSO account

To register a new account on ginstr SSO, click on the 'sign up!' link positioned above the e-mail field to display the form for registering a new ginstr iD (ginstr account).
The registration form consists of the following fields:
  • e-mail (required field)
  • password (required field)
  • re-enter password (required field)
  • first name (required field)
  • last name (required field)
  • mobile number (optional)
  • company (optional)
  • language (drop down)
NOTE:
Your ginstr account will be created in the language selected in the language drop down. Currently, not all listed languages are supported. If you select an unsupported language then content will be displayed in English.
The registration form also contains links to frequently asked questions and the ginstr Privacy Policy.
appearance of ginstr iD activation e-mail
After filling all required fields and clicking the
register
button, you will be taken to a page informing you that your account is now registered and that a confirmation e-mail has been sent to the e-mail account used for registration.
Activation
An activation e-mail will be sent from address notifications@ginstr.com with the subject 'ginstr iD activation'. This e-mail contains a link "Activate your ginstr iD" which must be clicked to activate your account. Upon successful activation, you will be taken to a page confirming that your ginstr iD is activated and you can now log in with the newly created ginstr iD & password at https://sso.ginstr.com/.
NOTE:
In case you do not receive the activation e-mail shortly after completing the registration form, please check your junk/spam folder

login button

After entering your ginstr iD email address & password, press the
log in
button to proceed to the SSO lobby.
questions and answers (FAQ) page

FAQ

Below the password field on the right side there is a "questions and answers (FAQ)" link which, when clicked, opens a page with frequently asked questions regarding the registration process and other content relevant to starting work with the ginstr SSO platform.

Signing up with Facebook or Google account

If you already have a Facebook or Google account then the two buttons below the
log in
button allows you to log in to ginstr SSO with your existing Facebook or Google credentials.
If you are already logged in to Facebook or Google, you will be asked to grant access to ginstr.
If you are not already logged in to Facebook or Google, you will be asked for authorisation.

forgot password

If you have forgotten your password you can use the "forgot password?" link to assign a new password. This link is located on right side of log in form under the password field.
On the password reset screen, enter the e-mail address used for registration and click on the 'reset password' button and an e-mail with instructions will be sent to that e-mail address.
Language selection drop down

ginstr Support Chat

If you have a question which is not answered in the FAQ page or in this manual, clicking the 'Chat now' button on the right side of log in screen opens a chat window where you can chat directly with ginstr customer support.

Language selection

In the bottom right corner of the SSO log in screen there is a drop down selection which allows you to select the language in which SSO content will be displayed.
NOTE:
Currently, not all listed languages are supported. If an unsupported language is selected then content will be displayed in English.

SSO lobby

Once logged in to ginstr SSO, the default set of applications icons will be displayed in the SSO lobby.

default applications icons in the SSO lobby

These default applications are:

ginstr home page
opens https://www.ginstr.com/
ginstr web
opens ginstr web client which contains tables where the master data for ginstr applications is defined and where data sent from ginstr applications is stored
OpenCellID
opens OpenCellID application

Upon clicking on the ginstr web icon for the first time, you will be asked to accept the 'Conditions of Use for ginstr Applications'. After accepting these conditions of use, they will not appear again on launching of ginstr web application.

NOTE:
Even though your account is now activated, you will not be able to use ginstr web without first purchasing some ginstr subscription from the ginstr shop error (1017) ginstr is disabled
User name at top right-hand corner of the lobby

SSO lobby menu

contact form appearance
configure private applications page

Your user name is displayed at the top right corner of the SSO lobby screen when logged in. When you hover the mouse over this user name, a drop down menu opens.

Items in this menu are:

contact form

Opens page with contact form that enables you to contact ginstr support via e-mail
In this form all fields must be filled before clicking the
send
button.

questions and answers (FAQ)

Opens the frequently asked questions page

configure private applications

Displays private applications created by user.
Private applications are only visible to their owner.
Here you can view information on each private application and have the option to permanently remove each private application from the server.

my account

Opens the my account page containing settings related to your user account. See here for more information.
conditions of use for ginstr applications

conditions of use

When you hover your mouse over this menu item, a sub-menu appears.
Clicking on the 'ginstr web' sub-menu item displays the 'Conditions of Use for ginstr Applications' which you agreed to upon launching the ginstr web application from SSO lobby for the first time.

imprint

Click on this menu item to open the imprint page on the ginstr web site

privacy policy

Click on this menu item to open the privacy protection page on the ginstr web site

log out

Click on this menu item to log out of ginstr SSO and return to the SSO log in screen

My account page

This page contains multiple sections:

my account page

my account

This section contains two sub-sections: general and hide/show content

general
This section displays all details related to your user account, some of which are editable.
The general section consists of the following items:
account
Your ginstr iD user name is displayed here. This item is not editable
role
The SSO role of your account is displayed here. This item is not editable
account status
The status of your account (active, suspended, deleted) is displayed here. This item is not editable
language
Allows you to select the language in which SSO content will be displayed. Currently supported languages are English, German, Spanish, French, Hebrew and Arabic.
After selecting your preferred display language in the drop down, click the
apply
button at the end of the general section to apply the language change.
e-mail
In this field you can enter your personal or company e-mail.
password and re-enter password
These two fields are used to change the current password.
In order to change your password, you must enter the same new password in both password and re-enter password fields before clicking on the
apply
button at the end of the general section.
The new password must contain at least one number, one uppercase letter and not less than 8 characters.
NFC
In this field you can enter an NFC tag id, allowing you to log in to ginstr apps by scanning this NFC tag on Android devices with built-in NFC technology.
first name and last name
In these fields you can modify first and last name which were entered on account creation.
mobile number
In this field you can enter your personal or company mobile number.
company (optional)
In this field you can enter the name of your company.
disable chat support
This checkbox disables support chat so that the chat window will no longer be displayed in either SSO or ginstr web.
delete all data of all tables in this account older than (days)
In this field you can define how long the data in all tables of all applications enabled for your account will be kept.
Default value is 0 which means that data will be kept in tables forever.
Value must be positive number up to a maximum of 999 days.
After entering the desired value, click the
apply
button at the end of the general section to apply the change.
maximum number of rows that can be displayed in each table
Here you can define how many rows can be displayed in each ginstr web table before 'filter by record creation date' appears in table. Once the defined number of records is reached in a table, the records in the table will be grouped based on record creation date. This number of records is defined on browser and server level.
hide/show content
hide/show content section
This section consists of a list of application tables with option to change permissions on each table and a section where you can assign or unassign records that exist in table.
The hide/show content section consists of the following items:
list of ginstr applications
Here you will be shown a list of names of all ginstr applications which are enabled for your account.
list of tables of selected ginstr application
When you click on one or more application names in the 'list of ginstr applications', then all tables of the selected application(s) are displayed in the 'list of tables of selected ginstr application'.
For each table there are four permissions displayed: create, read, update and delete (CRUD permissions). By clicking on the name of a permission, you can either enable or disable that permission for the selected table.
There is also the option to select a table and then click on the 'activate all' link above the list of tables and activate all permissions on the selected table.
  • If create permission is enabled on a table, this means that user will be able to create new records in that table
  • If read permission is enabled on a table, this means that user will be able to see that table in ginstr web
  • If update permission is enabled on a table, this means that user will be able to modify existing records in table
  • If delete permission is enabled on a table, this means that user will be able to delete records from that table in ginstr web
list of records in selected table
When you select some table in the 'list of tables of selected ginstr application', then a 'list of records in selected table' appears with the option to assign/unassign existing records in table.
When records are added to a table they are assigned by default and they are listed in the form of record id's in the ASSIGNED list.
If you click on some id in the ASSIGNED list then that id moves to the NOT ASSIGNED list on the left side.
When you click on the
apply
button above the ASSIGNED list, changes will be saved and the record which is moved to the NOT ASSIGNED list will not be displayed in the selected table in ginstr web.
interface for defining how much days to keep records in tables on application and table level
Above the 'list of tables of selected ginstr application' and 'list of records in selected table' there are fields where you can define how long data in all app tables or in single app table will be kept.
This feature exists on 3 levels
  1. all applications level (which exists in the general section and is described here)
  2. single application level - this field exists above the 'list of tables of selected ginstr application' and when some number of days is defined there, data in all tables of that app will be kept for the defined number of days before being deleted.
  3. single table level - this field exists above the 'list of records in selected table' and when some number of days is defined there, data in that particular table will be kept for the defined number of days before being deleted.
General rule: If an amount of days is defined on level 1, then this amount of days will be applied on levels 2 and 3 for all apps. If an amount of days is defined on level 2 for some app, then this amount of days will be applied on level 3 for all tables of that app and for all other apps (and the tables therein) the amount of days defined on level 1 will still apply. If an amount of days is defined on level 3 for some table then this amount will be applied for that table only and all other tables of that application will have amount of days defined on level 2 of that application.

subaccounts

subaccounts section

In this section a main account user can create subaccounts. The amount of subaccounts which can be created by the main account user is defined based on your ginstr subscription.

The main account is also called the 'company' account which means that, for example if a company has 10 workers which will be using application they will need to create 10 subaccounts on their main ('company') account, one for each worker that needs to log in to the application.

The main account is used as an administrator for subaccounts created by that main account and can choose which applications each subaccount can use and which permission the subaccount will have for each table. The main account user can also delete subaccounts they have previously created.

The subaccounts section consists of the following items:

interface to add new subaccount and list of existing subaccount
When you click on the "add subaccount" button at the top of this section, an interface will open where used can enter required data to create new subaccount.
  • In the 'e-mail' field you should define the e-mail address which will be used as username of new subaccount.
  • In the 'password' field you should define the password which will be used by new subaccount for logging in. Under this field there is a checkbox labelled "show password" which, when checked will display the password in plain text.
  • In the 'NFC' field you can define the NFC tag id which can be used by that new subaccount to log in to ginstr launcher and ginstr apps.
  • In the 'role' drop down you can select some of the roles which can be created by user. More information on roles can be found here.
  • In the 'applications' drop down you can select which applications will be enabled for subaccount
  • In the 'access status' drop down you can select between active and suspended status. You can create an unlimited number of subaccounts with suspended status but the number of subaccounts with active status is dependant on your ginstr subscription. Only active subaccounts will be possible to use ginstr web and ginstr apps.
  • In the 'idle timeout (hh:mm)' field you can define amount of time, after which subaccount will be logged out if inactive. Value should be set in range 00:20-24:00
  • The creating subaccounts allowed checkbox, if checked, allows subaccount to create its own subaccounts (This option is not yet supported)
  • The 'user can use ginstr apps' and 'user can use ginstr backend' checkboxes allow the main account to define whether or not each subaccount will be able to use ginstr web and/or ginstr apps.
Once all data is filled and the
add
button is clicked, the newly created subaccount appears in this section.
In the list of existing subaccounts, the main user has the option to 'show settings', which opens the interface to edit existing subaccount or delete existing subaccount by clicking the delete icon.png button.
list of applications enabled for selected subaccount
This section displays the names of all ginstr applications which are enabled for that subaccount
list of tables for selected applications
This part is as described in hide/show content section.
When you click on an application name in the 'list of ginstr applications' then all tables of selected application are displayed in the 'list of tables of selected ginstr application'.
For each table there are four permissions displayed: create, read, update and delete (CRUD permissions). By clicking on the name of a permission, you can either enable or disable that permission for the selected table.
There is also the option to select a table and then click on the 'activate all' link above the list of tables and activate all permissions on the selected table.
  • If create permission is enabled on a table, this means that user will be able to create new records in that table
  • If read permission is enabled on a table, this means that user will be able to see that table in ginstr web
  • If update permission is enabled on a table, this means that user will be able to modify existing records in table
  • If delete permission is enabled on a table, this means that user will be able to delete records from that table in ginstr web
The main difference is that in hide/show content section tables are created with enabled permissions and in subaccount section tables are created without permissions so that the main user can define permissions on tables for subaccount.
Both main account and subaccount are using the same tables of applications so there are not two set of tables but only different permissions on the same tables.
list of records in selected table
This part is same as described in hide/show content section.
When you select some table in the 'list of tables of selected ginstr application' then a 'list of records in selected table' appears with option to assign/unassign existing records in table.
When records are added to a table they are assigned by default and they are listed in the form of record id's in the ASSIGNED list.
If you click on some id in the ASSIGNED list then that id moves to NOT ASSIGNED list on left side.
When you click on the
apply
button above the ASSIGNED list, changes will be saved and the record which is moved to the NOT ASSIGNED list will not be displayed in the selected table in ginstr web.
Since same tables are used for both main account and subaccount records created by main account and all existing subaccounts of that main account will be displayed in this section but it can be defined per each subaccount here which records will be displayed in table for that particular subaccount

roles

roles section

In this section you can define different roles that can be assigned for each subaccount. Roles are templates of permissions and records assignments for apps and if a role is assigned to some subaccount then tables permissions and records assignments defined in that role will be applied on that subaccount for any app enabled for that subaccount in the subaccounts section.

Once a role is created, it can be assigned to each subaccount (new or existing) in the interface for adding/editing subaccounts. In the subaccounts section, each subaccount can be assigned a role by clicking 'show settings', selecting the desired role in the roles drop down and clicking the
update
button to save changes. This role will be applied to the applications assigned to that subaccount in the 'applications' drop down.

The roles section consists of the following items:

interface to add new role and list of existing roles
When you click on the 'add role' button, the interface for adding a new role opens with 'enter role name' and 'enter description' fields. Once you fill these fields and click on the
add
button, the new role is created and displayed in the list of existing roles.
Existing role has an option to 'show settings' which, when clicked enables you to edit the name and description of a role, a delete icon.png button, which when clicked enables you to delete existing row and there are names displayed and total number of subaccounts assigned to that role.
list of applications enabled for main account
When you click on an existing role then a list of all applications enabled for the main account will appear on the right side of the screen.
list of tables for selected applications
When you click on some of the applications from the list of applications enabled for the main account, then all tables of that selected app will appear in the list of tables for selected applications. Tables are initially displayed without any permissions enabled so that user can define permissions.
For each table there are four permissions displayed: create, read, update and delete (CRUD permissions). By clicking on the name of a permission, you can either enable or disable that permission for the selected table.
There is also the option to select a table and then click on the 'activate all' link above the list of tables and activate all permissions on the selected table.
  • If create permission is enabled on a table, this means that user will be able to create new records in that table
  • If read permission is enabled on a table, this means that user will be able to see that table in ginstr web
  • If update permission is enabled on a table, this means that user will be able to modify existing records in table
  • If delete permission is enabled on a table, this means that user will be able to delete records from that table in ginstr web
Permissions defined here will be applied on subaccount if that role is assigned to subaccount and it will override permissions defined directly on subaccount in subaccounts section
list of records in selected table
When records are added to a table they are assigned by default and they are listed in the form of record id's in the ASSIGNED list.
If you click on some id in the ASSIGNED list then that id moves to the NOT ASSIGNED list on the left side.
When you click on the
apply
button above the ASSIGNED list, changes will be saved and the record which is moved to the NOT ASSIGNED list will not be displayed in the selected table in ginstr web.
Assignments of records defined here will be applied on subaccount if that role is assigned to subaccount and it will override assignments of records defined directly on subaccount in subaccounts section.

plugins

plugins section

Plugins handle certain complex functionalities which cannot be handled in any other way (for example executing some calculations based on data in two separate tables, or sending e-mails based on data which requires certain information from different tables of an app etc..)

The plugins section of the SSO 'My account page' displays a list of all plugins installed for the currently logged in SSO account.

Settings pertaining to each installed plugin can be accessed by clicking on the show settings link below each plugin name.

There is also a checkbox which can be used to enable/disable each plugin as required.

To save modified plugin settings, click on the
update
button.