Although some actions are possible without signing in or having an account, to really reap the benefits of the Hypi platform, one must be authenticated.
Most of this documentation assumes as much. Only where explicitly noted can actions be performed without first being authenticated.
There are two main types of entities recognised on the platform. First, Organisations and second Users.
An organisation represents a grouping. Many actions on the platform depend on the organisations a user belongs to. It does not necessarily have to represent a company but generally does.
When apps are added from the app store they are added to an organisation, not to the user who added it. Of course, a user with the permission to do so can decide to restrict visibility of an app to certain users only or to give different permissions to different users which results in them being able to perform different actions and see different things in the same app.
A user represents a single account which can be used to authenticate and access apps and data within one or more organisations to which they have access. Users are often humans but external services can also have user accounts that are given access to an organisation allowing it to act on behalf of the organisation’s users e.g. a service which automatically gathers data and generates reports.
Subject is the general term used to refer to any user account whether it belongs to a human, an app or some other entity.
Policies, Roles and Permissions
This combination gives a powerful set of options enabling a great level of control over what actions a subject can perform.