Challenge Overview
NEW FUNCTIONAL REQUIREMENTS - Create a schedule for downloads by user
��
- Download of select Account Activity (from the Email Audit API)
��
- For batch CSV upload option, overwrite previously scheduled downloads with the most recent CSV upload list.��
SECURITY REQUIREMENTS
��
- Build in restricted/authenticated access controls that is configurable by the application administrator
��
- Provide the application administrator the ability to leverage a SAML Single Sign-On (SSO) infrastructure and act as a service provider that trusts the identity provider on the user information to provide access to its services or resources.
��
- Provide a configurable session cookie option to the application administrator such that they can control how long a cookie lasts until a user is required to reauthenticate.
��
- - Ensure that any action that can be formed through the application (Post requests) must require a authorization or the request should provide session information, including the transmission of an authenticated session cookie/ID.
��
- Replace the use of hard-coded credentials within the application with OAuth 2.0, which is supported by Googles Email Audit API.
��
- Implement application wide cross-site request forgery prevention
��
- Implement application wide secure cookie transmission - (HTTPS only)
��
- Build a access control model that could allow authenticated user to not have administrative access to the application (only Application Admins/Super Users)
��