Prerequisites

The Securosys Authorization App works with the Transaction Security Broker (TSB) and a Securosys HSM (either an on-premise Primus HSM or a CloudHSM). Both need to be configured before you can get started with the Authorization App.

CloudHSM

CloudHSM offers TSB-as-a-service. Depending on the service package, the TSB option may be included or may need to be manually enabled.

To check what license options are enabled, you can call the GET /v1/licenseInfo endpoint of your CloudHSM instance. See the REST API base URLs.

If your subscription supports the Securosys Authorization App, the following license flags should appear:

{
  "clientFlags": [
    "KEY_AUTH",
    "REST_API",
    "TSB_ENGINE",
  ]
}

CloudHSM trial

For testing purposes, the Securosys Cloud platform offers a free 90-day trial partition.

The trial environment offers the full CloudHSM feature set, allowing you to evaluate its capabilities. This trial setup is ideal for development, experimentation, or simply gaining hands-on experience with Securosys services.

On-premise

For the on-premise setup, configure both the Primus HSM and the TSB. You need:

• Primus HSM: Set up and configured successfully, including:
  • Device setup completed with the initial wizard
  • Root Key Store installed and configured
  • Enabled features in the security config: Client API access, JCE, Key Authorization, REST API access, TSB Workflow Engine
  • Created at least one user partition
• Transaction Security Broker (REST API): Successfully deployed and configured the TSB Docker container with the TSB_ENGINE license