> ## Documentation Index
> Fetch the complete documentation index at: https://docs.activeviam.com/llms.txt
> Use this file to discover all available pages before exploring further.

# atoti.SecurityConfig

### *final class* atoti.SecurityConfig

The security config.

<Note>
  This feature is not part of the community edition: it needs to be [unlocked](../guides/unlocking_all_features).
</Note>

This configures the parts of the security system that cannot be changed once the session is started.

<Callout icon="link">
  **See also**:
  [`atoti.Session.security`](./atoti.Session.security#atoti.Session.security) and [`atoti.tables.Tables.restrictions`](./atoti.tables.Tables.restrictions#atoti.tables.Tables.restrictions) to continue configuring the security once the session is started.
</Callout>

#### basic\_authentication *: [BasicAuthenticationConfig](./atoti.config.security.basic_authentication_config#atoti.BasicAuthenticationConfig)*

Always enabled even if [`sso`](#atoti.SecurityConfig.sso) is not `None` to facilitate the authentication of service/technical users.

<Callout icon="link">
  **See also**:
  [`BasicAuthenticationSecurity`](./atoti.security.basic_authentication_security#atoti.security.basic_authentication_security.BasicAuthenticationSecurity).
</Callout>

#### client\_certificate *: [ClientCertificateConfig](./atoti.config.security.client_certificate_config#atoti.ClientCertificateConfig) | [None](https://docs.python.org/3/library/constants.html#None)* *= None*

#### cors *: [CorsConfig](./atoti.config.security.cors_config#atoti.CorsConfig) | [None](https://docs.python.org/3/library/constants.html#None)* *= None*

#### https *: [HttpsConfig](./atoti.config.security.https_config#atoti.HttpsConfig) | [None](https://docs.python.org/3/library/constants.html#None)* *= None*

#### jwt *: [JwtConfig](./atoti.config.security.jwt_config#atoti.JwtConfig)*

#### login *: [LoginConfig](./atoti.config.security.login_config#atoti.LoginConfig) | [None](https://docs.python.org/3/library/constants.html#None)* *= None*

#### same\_site *: [Literal](https://docs.python.org/3/library/typing.html#typing.Literal)\['lax', 'none', 'strict']* *= 'lax'*

The value to use for the *SameSite* attribute of the HTTP cookie sent by the session.

See [https://web.dev/samesite-cookies-explained](https://web.dev/samesite-cookies-explained) for more information.

<Note>
  `"none"` requires the session to be served over HTTPS.
</Note>

#### sso *: [KerberosConfig](./atoti.config.security.kerberos_config#atoti.KerberosConfig) | [LdapConfig](./atoti.config.security.ldap_config#atoti.LdapConfig) | [OidcConfig](./atoti.config.security.oidc_config#atoti.OidcConfig) | [None](https://docs.python.org/3/library/constants.html#None)* *= None*

The config to delegate authentication to a Single Sign-On provider.
