Skip to main content

Frequently Asked Questions about Security and Athento's API

Soporte L1
  • Updated

Below, answers are provided to some frequently asked questions about Information Security and Athento's API:

QUESTION: Does Athento provide a user management API that is not JSON or REST?
ANSWER: The API is JSON or REST, and there is also an SDK in Python.

Q: Does Athento provide an API for querying data in information sets? For example: Open Data Protocol (OData), GraphQL, others.
A: Yes, GraphQL.

Q: What messaging formats does it support for exposing or consuming capabilities, and for what type of operations each one? For example: JSON-API, Open API Specification (OAS), GraphQL, SWIFT MT, ISO 8583, FIX - FIXML (Financial Information Exchange), Custom XML, ISO 20022, Other? Which one(s)?
A: JSON-API for receiving information, for example, through RabbitMQ.

Q: Does it have an open or standards-based API for managing client-controlled encryption keys?
A: To manage encryption keys, a vault is used, which can be LastPass or Azure Key Vault; both have APIs.

Q: Does it have georeferencing-based access control?
A: Yes, based on georeferencing by IP.

Q: What ports and protocols would be used for information traffic between installed agents and Athento's cloud? (include URL segments that the solution will work with, port and IP address, and description)
A: The application operates over HTTPS, port 443, under the domain https://domain.athento.com.

Q: Is SSL packet inspection required?
A: It is not required by Athento.

Q: Does Athento require a certificate? If yes, who issues it?
A: Yes, Athento uses a wildcard certificate. If the client requires a custom domain, the client must contract another provider for certificate issuance.

Q: Is the traffic unidirectional or bidirectional? Does it only generate where the client is?
A: It is bidirectional.

Q: Does Athento run on proprietary tools (vendor lock-in)? Or on agnostic tools that allow deployments in a decoupled manner?
A: Athento primarily operates on an Open Source architecture with: Ubuntu Server, Apache 2, PostgreSQL, ElasticSearch, Django 4.2, Python 3.11, React, etc.

Related to

Related articles

Comments

0 comments

Please sign in to leave a comment.