Release v2.8.0 - June, 2025
Overview
This release introduces Time-Based Restrictions and Geo-Fencing Restrictions, enabling administrators to control user access by specific time windows and geographic locations for enhanced security and compliance.
New Features
- Time-Based Restriction:
Time-Based Restriction feature enables administrators to enforce login access rules based on specific time windows. This improves security and operational control by limiting user access to the application during permitted hours only.
Key Highlights:
New Module in Admin Portal:
Added under Settings → Time-Based Restriction.
Blueprint-Level Configuration:
Admins can create time-based restrictions for each configured blueprint.
Restriction Types Supported:
Common: Applies to all users in the selected blueprint.
User-Specific: Restriction applies only to selected users.
Group-Based: Applies to users mapped to selected groups only.
Time Window Configuration:
Define specific login start and end times (e.g., 09:00 – 18:00).
Users outside the defined window will be restricted from logging in.
Smart Validation:
Restrictions are enforced only for the selected scope (common, user, group).
Other users/groups not included are not impacted.
Access Control:
Login attempts outside the allowed time display appropriate restriction messages.
No restriction is enforced if no rule is configured.
Admin Capabilities:
Create, Edit, Delete restrictions.
View all restrictions per blueprint in a tabulated format.
Geo-Fencing Restrictions
The GeoLocation-Based Login Restriction feature in Skillmine Auth allows administrators to enforce login access policies based on the user's geographical location. This feature enhances security by ensuring that users can only log in from permitted physical locations.
Key Highlights:
Supported Restriction Types :
Administrators can configure geolocation restrictions at three levels:
Common – Applies to all users within the selected blueprint.
User – Applies only to specific users added during configuration.
Group – Applies only to users who are part of the mapped groups.
GeoLocation Modes:
Geo-restriction can be applied using two types of geographic configurations:
1. Point Type
Requires Latitude, Longitude, and a Radius (in kilometre’s).
Defines a circular area within which logins are allowed.
2. Polygon Type
Requires three or more sets of latitude and longitude coordinates.
Defines a custom-shaped geographical boundary.
Configuration Steps :
Go to Admin Portal → Settings → GeoLocation Restrictions.
Click on the “Create New Restriction” button.
Select a Blueprint.
Choose the restriction type: Common, User, or Group.
Based on the selected type:
Common: Directly provide coordinates and radius or polygon points.
User: Select users and then define location parameters.
Group: Select group(s) and define location parameters.
Click Save to apply the restriction.
Login Behavior:
During login, the user’s current location is compared against the configured geolocation restrictions.
If the user is within the allowed boundary, login is successful.
If the user is outside the allowed boundary:
An "Access Denied due to Location" error is shown.
If no restriction applies to the user, login proceeds normally.
Limitations :
Device GPS Dependency
GeoLocation-based restrictions rely on the availability of a GPS chip or location services on the user's device.
Most mobile devices (smartphones, tablets) have built-in GPS and provide accurate location data.
Some laptops or desktops may not have GPS hardware and will rely on less accurate methods such as:
IP-based geolocation
Wi-Fi triangulation
In such cases, the detected location may be inaccurate or unavailable, which can lead to:
False denials (users unable to log in from valid locations)
Inconsistent login experiences across devices
Browser/OS Location Permissions
The user's browser or OS must grant permission to access location.
If permission is denied, the system will get the geolocation based on the ipaddress from the
Last updated