This page hosts the detailed specification for the [https://blueprints.launchpad.net/sahana3/+spec/authentication-authorization Blueprint for the Authentication & Access].

S3 currently just uses the default T2 AAA system:
 * http://trac.sahana3.org/wiki/DeveloperGuidelinesAuthenticationAccess

However this won't be appropriate for all deployment scenarios.
The specification we should be working to implement is in the Wiki:
 * http://wiki.sahana.lk/doku.php?id=dev:security

(NB Sahana is about to change AAA method to it's 3rd & the Vol module currently uses a separate method)