Ticket #1005 (closed task: fixed)

Opened 12 years ago

Last modified 11 years ago

[S] OWS Server Policy Decision Point

Reported by: pjkersha Owned by: pjkersha
Priority: required Milestone: NDG3
Component: security Version:
Keywords: Cc:

Description

This is linked with #1004. The OWS Server Policy Enforcement Point calls this component in order to get an access control decision.

The Policy Decision Point gets the requesting users access privileges and the constraints for the requested resource and makes an access control decision: granted or denied.

  • The PDP may need to callout to an authentication service if the requested resource has security constraints and the user is not logged in.
  • The PDP follows an existing interface. PDPs already exist for NDG Browse and the BADC's ProFTP file access systems.
  • a new component is required to map resource URIs to resource constraints. (For NDG Browse this was done by putting resource constraints in the data itself).

Change History

comment:1 Changed 11 years ago by pjkersha

  • Status changed from new to closed
  • Resolution set to fixed
Note: See TracTickets for help on using tickets.