Security

Manage access control, permissions, and secure access to your forms.

---

📚 Available Guides

✅ Timed Access Tokens

Secure temporary access to forms and resources

What you'll learn:

• What timed access tokens are
• When to use access tokens
• How to generate tokens
• Token expiration policies
• Security best practices
• Common use cases

Best for: Securing forms with time-limited access

Level: Intermediate

---

📋 Coming Soon

User Permissions

• Permission levels and roles
• Assigning permissions
• Permission inheritance
• Managing user access

Authentication Methods

• Supported authentication types
• Single Sign-On (SSO)
• Multi-factor authentication (MFA)
• Password policies

Data Security

• Data encryption
• Secure data transmission
• Data retention policies
• Privacy compliance

Compliance Features

• GDPR compliance
• HIPAA requirements
• SOC 2 standards
• Audit trails

---

🎯 Quick Start

Secure Your Form with Access Tokens

1. Generate Token

   • Navigate to Form Settings
   • Go to Security tab
   • Click "Generate Access Token"
   • Set expiration time

2. Configure Token

   • Set access duration
   • Configure permissions
   • Set usage limits
   • Add restrictions

3. Distribute Token

   • Copy token URL
   • Share with authorized users
   • Monitor token usage
   • Revoke if needed

4. Monitor Access

   • View access logs
   • Track token usage
   • Review security events
   • Audit access patterns

---

🔒 Security Best Practices

Token Management

• Expiration: Always set appropriate expiration times
• Rotation: Rotate tokens regularly for sensitive forms
• Revocation: Revoke compromised tokens immediately
• Monitoring: Track token usage and access patterns

Access Control

• Principle of Least Privilege: Grant minimum necessary access
• Regular Reviews: Audit permissions periodically
• Strong Authentication: Enable MFA where possible
• Session Management: Configure appropriate session timeouts

Data Protection

• Encryption: Ensure data is encrypted in transit and at rest
• Secure Storage: Store sensitive data securely
• Data Minimization: Only collect necessary information
• Regular Backups: Maintain secure backups

---

🛡️ Security Features

Access Tokens

✓ Time-limited access
✓ Usage limits
✓ IP restrictions
✓ Revocation capability
✓ Activity logging

Authentication

✓ Username/password
✓ Single Sign-On (SSO)
✓ Multi-factor authentication
✓ API key authentication

Authorization

✓ Role-based access control
✓ Permission management
✓ Resource-level permissions
✓ Hierarchical permissions

Audit & Compliance

✓ Access logs
✓ Security event logging
✓ Audit trails
✓ Compliance reporting

---

🔍 Use Cases

External Form Access

Use timed access tokens to:

• Share forms with external users
• Grant temporary vendor access
• Provide time-limited customer access
• Enable secure partner collaboration

Internal Security

Implement access controls to:

• Restrict sensitive forms to authorized users
• Separate development and production access
• Control administrative functions
• Manage team permissions

Compliance Requirements

Meet compliance needs with:

• Audit trails for all access
• Data encryption standards
• Access logging and monitoring
• Regular security reviews

---

🔗 Related Documentation

Forms

• Custom Form Builder - Secure form creation
• Embed Forms - Secure embedding

Customization

• Administrator Guide - Admin security

Reference

• Security Glossary
• Limits and Quotas

---

📖 How-To Guides

• How to Generate Access Tokens (coming soon)
• How to Manage User Permissions (coming soon)
• How to Configure SSO (coming soon)
• How to Enable MFA (coming soon)

---

🆘 Troubleshooting

Common Issues

Token not working?

• Check expiration time
• Verify token hasn't been revoked
• Confirm correct token URL
• Check usage limits

Access denied errors?

• Verify user permissions
• Check authentication status
• Review access restrictions
• Confirm resource availability

Authentication failing?

• Verify credentials
• Check account status
• Review authentication method
• Check system status

→ More Troubleshooting

---

❓ FAQs

Q: How long can an access token be valid?
A: Token duration depends on your security policy. See Timed Access Tokens

Q: Can I revoke a token after sharing it?
A: Yes, tokens can be revoked at any time.

Q: Are there usage limits for tokens?
A: Yes, you can set usage limits per token. See Limits and Quotas

Q: How do I track who accessed what?
A: Use the audit logs to track all access. See Administrator Guide

→ More FAQs

---

⚠️ Security Alerts

Important Security Reminders:

• Never share tokens in public channels
• Always set expiration times
• Monitor access logs regularly
• Revoke unused tokens
• Report security incidents immediately

---

← Back to Features | ← Back to User Documentation