The “Time Guard” module in EspoCRM creates a restriction on user access if they have a defined work calendar and attempt to log in outside of working hours. This provides a more stringent access control and protects the company’s confidential data.
Additionally, the module includes a “ClearAuthTokens” job, which regularly scans active authentication tokens and disables tokens for users who fall under the login restriction during non-working hours. Therefore, upon the next occurrence of working hours, users will need to reauthorize, providing an additional level of security.
Configuring a user’s working hours is done through the standard “Work Calendar”. Creating and configuring the calendar is done in the administrative section of the system. The desired work schedule is specified using the start and end times of the workday. You can specify a general schedule for all working days, as well as for a specific day of the week. If the time is specified for a specific day of the week, that time is used. The login restriction works only with the first specified time range.
The access restriction module in EspoCRM provides an increased level of security and access control to a company’s confidential data. It is easy to configure and allows for access management based on a user’s working hours.