Difference between revisions of "Code Discussion 2009-06-29"

From MPDLMediaWiki
Jump to navigation Jump to search
m
Line 7: Line 7:
=Authorization mechanisms=
=Authorization mechanisms=
*XACML policy example
*XACML policy example
*[http://www.escidoc.org/documentation/Soap_api_doc_AA_PolicyDecisionPoint.pdf|Policy decision point]
*[http://www.escidoc.org/documentation/Soap_api_doc_AA_PolicyDecisionPoint.pdf Policy decision point]


==Implementation of existing policies==
==Implementation of existing policies==

Revision as of 11:51, 29 June 2009

Previous topic[edit]

Previous topic 2009-06-22

Next topic[edit]

Next topic 2009-07-06?

Authorization mechanisms[edit]

Implementation of existing policies[edit]

  • in PgSql database aa schema
    • Table: escidoc_role (role definitions)
    • Table: escidoc_policies (policies in XACML for a role)
    • Table: role_grant
    • Table: scope_def

Filters[edit]

  • translate XACML rules into SQL Queries
  • careful about what works and what does not work

Policy examples[edit]

Implementation of new actions[edit]

  • other code discussion meeting
  • implementation of new policies and actions
  • PDP engine

eXtensible Access Control Markup Language

Structured Query Language

Retrieved from "https://colab.mpdl.mpg.de/mw010/index.php?title=Code_Discussion_2009-06-29&oldid=38549"