Ignore:
Timestamp:
25/08/10 11:03:04 (10 years ago)
Author:
pjkersha
Message:

Incomplete - task 2: XACML-Security Integration

  • working caching with ndg.security.test.integration.full_system integration test. Caching works at the app, caching authz decisions but also at the PIP inside the authorisation service, caching Attribute Authority query results.
  • TODO: make PEP use two stage PDP, first lightweight PDP filters out CSS and graphics requests to avoid overhead of network call to the authorisation service, second stage is callout to authorisation service as already in place.
File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/NDGSecurity/python/ndg_security_common/ndg/security/common/credentialwallet.py

    r7359 r7361  
    443443            
    444444    @abstractmethod 
    445     def auditCredentials(self, userId=None, **attCertValidKeys): 
     445    def auditCredentials(self, userId=None, **assertionValidKeys): 
    446446        """Check the attribute certificates held in the repository and delete 
    447447        any that have expired 
     
    449449        @type userId: basestring/list or tuple 
    450450        @param userId: audit credentials for the input user ID or list of IDs 
    451         @type attCertValidKeys: dict 
    452         @param **attCertValidKeys: keywords which set how to check the  
    453         Attribute Certificate e.g. check validity time, XML signature, version 
    454          etc.  Default is check validity time only - See AttCert class""" 
     451        @type assertionValidKeys: dict 
     452        @param **assertionValidKeys: keywords which set how to check the  
     453        assertion e.g. XML signature, version etc.  Default is check validity  
     454        time only 
     455        """ 
    455456        raise NotImplementedError( 
    456457            self.auditCredentials.__doc__.replace('\n       ','')) 
Note: See TracChangeset for help on using the changeset viewer.