The permission logic (which users can perform which actions on which devices) is separated out into a slim backend service that you provide. In this service you focus solely on the permission logic without dealing with any of the communication-related parts - those are handled by ux4iot.