Sorry for the late reply.
I’m not sure what Kafka and Synapse are, but access rights or authorization in moqui are stored in the ArtifactAuthz entity.
ArtifactAuthz:
Basically each UserAccount is associated with a UserGroup, and each UserGroup has an ArtifactAuthz entity for given artifacts in the system (each screen, entity, and service is an artifact).
Now for how to integrate with other systems depends on how the other system handles redirection, and security. See this post for more details on how to integrate with other systems.
–
After reading through this, I’m intrigued with your problem and would like help out. I’ve done a fair bit of contracting work with Moqui, and I’d like to see if I can help solve your problem. Email me if you’re interested: michael@dejc.com