Access protection is provided through access tokens; for CELUM authentication this includes the option of dynamically determining the endpoint via membership of a CELUM user group.
In addition to access via existing CELUM users, an OpenID server can be used for user authentication. Based on the group membership of the user, the endpoint to be used is mapped. The user rights are configured on the respective endpoint. The OpenID Support documentation can be found here.