ESciDoc Authorization Authentication

Please use this page to discuss in general on the authorization mechanisms for core services, solutions etc.

What is authorized

Core services

Core services authorize each method of a core service based on a role definition. A role definition can be:

1. unlimited (i.e. administrator - can invoke any service method operation)
2. limited (i.e. based on properties of the resource )

More details on the core service authorization concept in svn, framework_release, cpt_authorization_authentication

1. How solutions authorize?
2. What solutions authorize?