Use different identity data for Mendix application

Many companies want to use identity data and contacts for low-code applications such as Mendix. In our specific use case, Mendix was intended to replace an aging organizational directory.

However, identity data is not normally available in one place. It is distributed across various databases and directories. Using the my-IAM RealIdentity service, identities of all kinds can be bundled centrally and passed on to Mendix. You can find out how this was implemented in practice here.

Mendix and identity information

Many companies use Mendix as a low-code platform to quickly develop customized and tailor-made apps and applications for their users. Mendix describes itself as the leading platform for the development of enterprise applications.</p

Almost every new application requires or processes employee contacts, customer contacts, partner contacts, team information, location information or other identity information.

But how does a company get all this data bundled into a new Mendix application?

Provide identity data for Mendix application

We report on a practical case from one of our customers:
In the past, this former Notes user had a special organizational directory based on Notes, which was very individually tailored to the company. The system was outdated, no longer contained all identities and contact information and was also only available on-premises.

The company decided to solve this specific use case with a Mendix application.

It turned out that the necessary interfaces could be created relatively quickly using Mendix. An SSO using OAuth (ENTRA) could also be integrated. Expectations were high, as the mockups of the interface looked very appealing. 

A closer look revealed that the necessary identity, contact and role information was distributed in different systems. This was because it was now necessary to merge identity information from ENTRA, Active Directory, HR system, Org Management system, CRM system and a special ERP system.

The expanded requirements called for a kind of logic layer that could provide Mendix with all the information permanently and up to date.

Solution: Identity, contact and team integration using my-IAM

While searching for a solution, the Mendix developers came across the business service my-IAM RealIdentity. my-IAM RealIdentity is a SaaS cloud service that can consolidate, manage and provide all identities for a company, such as employees, customers, partners and suppliers.

my-IAM RealIdentity is not a classic IAM system, but a new type of SaaS solution for the provision and management of identities of all kinds for almost all types of applications or apps.

A special feature is that my-IAM RealIdentity is fully integrated into ENTRA and can also be easily integrated into other systems, such as SAP SucessFactors or a CRM system. Unlike classic IDM systems, it is not necessary for the management of all identity types and information to run via my-IAM RealIdentity.

This makes a gradual or partial introduction possible. Existing efficient processes for identity management can continue to be used. At the same time, new applications can use all identities, not just those in ENTRA or the Active Directory.

It quickly became clear that the combination of a customer-specific Mendix application with my-IAM as a kind of identity information broker was the ideal solution.

Benefits of Mendix in combination with my-IAM RealIdentity

At first, the Mendix developers thought that they would pull the necessary identity information from RealIdentity and transfer it to their own database. This is not necessary, as RealIdentity is more than just an identity store.

These were specific requirements of the company:

• From Mendix, it should be possible to search for identities, contacts, customers or partners. Preferably relatively freely and with a certain amount of intelligence.
• In addition to the smart search, it was also important that not all users could see or edit all information. For example, sales employees in a region should only see partner contacts from a certain region.
• Of course, the whole solution had to be highly available, performant and accessible all over the world.

The SaaS solution RealIdentity can provide almost any type of identity with a wide variety of properties and attributes. The RealIdentity API has a smart search function (similar to Google search) and special authorization or search filter functions to achieve a positive user experience. Especially low-code applications like Mendix, need intelligent services to achieve the best user experience.

Another advantage of the my-IAM RealIdentity Service is that it is possible to change identities or contacts.

The result is that the newly created application directly accesses the RealIdentity API. This minimizes complexity within the Mendix application and speeds up development time.

Summary

Combining Mendix with my-IAM RealIdentity made it possible to quickly create a customized business solution that fully meets the requirements of the digital transformation.

The best of both worlds was utilized:

1. The customization options<, the rapid development and the excellent user experience offered by Mendix

2. The use of all identities (employees, customers, partners, suppliers), the smart search, the high level of security and the future-proofing in terms of expanding identity management using my-IAM RealIdentity

More about the my-IAM platform

The my-IAM platform combines all identities from different source systems and makes them available for applications and apps of any kind. In addition to the MS Teams-integrated app my-IAM PeopleConnect, it includes the business services my-IAM RealIdentity and my-IAM RealGroup.

Book online demo now

You can also reach us bey phone at
+49 89 215 442 40.