The configuration of protected self-services consists of two parts:
- Protected Self-Service Flows
- Arbitrary flows for logged-in users.
- Configured in Loginapp >> Protected Self-Services >> Protected Self-Service Flows.
- Access is protected by an access condition and an authorization condition.
- Available steps (excerpt): Airlock 2FA token management, FIDO token registration, Cronto token management including push activation, mTAN token management, email change, context data change, account lock, password change, and various approval steps.
- Other protected services (not flows)
- Specific non-flow self-services for logged-in users - typically to provide information to be edited in a protected self-service flow.
- Configured in Loginapp >> Protected Self-Services.
- Access is protected by an access condition and an authorization condition.
- Available services: list the user's Airlock 2FA, Cronto, or mTAN tokens, list of available flows.
- Usually, the service is called before starting a protected self-service flow.