Identity and access management (IAM)
Enonic XP ships with a defined and pluggable concept for IAM handing
Identity providers
ID providers represent the pluggable abstraction layer for user authentication. To authenticate or even create users in XP, you will need to create an ID provider.
Permissions
In addition to users, roles and groups, the CMS (and underlying NoSQL storage) supports fine-grained access control mechanisms down to a single item.