Changes between Version 11 and Version 12 of BluePrintAuthenticationAccess
- Timestamp:
- 01/08/09 20:11:05 (16 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
BluePrintAuthenticationAccess
v11 v12 1 1 This page hosts the detailed specification for the [https://blueprints.launchpad.net/sahana3/+spec/authentication-authorization Blueprint for the Authentication & Access]. 2 3 Authentication is the process that verifies the identity of a user.[[BR]] 4 Authorization provides controlled access to protected resources. 2 5 3 6 S3 currently uses the default T2 AAA system at a very basic level: {{{t2.logged_in}}} 4 7 * http://trac.sahana3.org/wiki/DeveloperGuidelinesAuthenticationAccess 5 8 6 However this won't be appropriate for all deployment scenarios. 9 However this won't be appropriate for all deployment scenarios.[[BR]] 10 * The main issue is that the current system supports self-registration...can easily diasble that to enforce manual user setup, which /can/ just be via appadmin (low priroity to make a nicer UI) 11 12 We need to extend to User Roles. 13 14 We need to extend to Data Security. 15 7 16 The specification we should be working to implement is in the Wiki: 8 17 * Proposed Trunk: http://wiki.sahana.lk/doku.php?id=dev:new_acl … … 30 39 * appadmin protected in the same way :) 31 40 41 * Working with Realms, Users, Groups, and Roles: http://java.sun.com/javaee/5/docs/tutorial/doc/bnbxj.html 42 32 43 ---- 33 44 BluePrints