ESciDoc Authorization Authentication Architecture

From MPDLMediaWiki
Jump to navigation Jump to search

Present architecture

At present only core services are secured:

  1. Each resource handler has built-in service interceptor that is intercepting all requests to the service
  2. The service interceptor analyzes the request and forwards it to the PDP engine
  3. The PDP engine provides allow/deny response for the request
  4. In case of deny response from the PDP engine the service responses with a security exception to the service requestor


Img service interceptor.jpg

Retrieved from "https://colab.mpdl.mpg.de/mw010/index.php?title=ESciDoc_Authorization_Authentication_Architecture&oldid=3848"