Changes between Version 4 and Version 5 of TI12_Security/DEWSHealthStreamPortalAccess2MetOfficeGeoserverUseCase


Ignore:
Timestamp:
09/01/07 15:20:47 (13 years ago)
Author:
pjkersha
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • TI12_Security/DEWSHealthStreamPortalAccess2MetOfficeGeoserverUseCase

    v4 v5  
    3636 1. The !PortalLogin passes the credentials over HTTPS to the PortalSM. 
    3737 1. PortalSM authenticates the user, makes and holds a session for them and returns a cookie back to the !PortalLogin 
    38  1. !PortalLogin sets the security session cookie and redirects the user's browser back 
     38 1. !PortalLogin sets the security session cookie. 
    3939 1. The Portal calls the PortalSM with getAttCert to ask it to retrieve an Attribute Certificate from the PortalAA. 
    40  1. PortalAA accepts the request since the user is registered with the Portal. 
     40 1. PortalAA accepts the request since the user is registered with the Portal and returns an Attribute Certificate. 
    4141 1. The PortalSM caches the Attribute Certificate returned in the user's !CredentialWallet. 
    42  1. The PortalSM calls the !MetOfficeAA with a getAttCert request passing its portal Attribute Certificate. 
    43  1. !MetOfficeAA accepts the Portal Attribute Certificate as it is from a `trusted` site.  It uses its role map to map the roles contained in the Portal Attribute Certificate to local roles understood by !MetOfficeGeoserver. 
    44  1. The mapped roles are returned in a mapped certificate to !PortalSM. 
     42 1. The PortalSM calls the MetOfficeAA with a getAttCert request passing its portal Attribute Certificate. 
     43 1. MetOfficeAA accepts the Portal Attribute Certificate as it is from a ''trusted'' site.  It uses its role map to map the roles contained in the Portal Attribute Certificate to local roles understood by !MetOfficeGeoserver. 
     44 1. The mapped roles are returned in a mapped certificate to PortalSM. 
    4545 1. PortalSM adds the new mapped Attribute Certificate to the user's wallet and returns the Attribute Certificate to the Portal. 
    4646 1. The Portal passes the mapped Attribute Certificate to the !MetOfficeGatekeeper with the Geoserver request.