You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@syncope.apache.org by "Francesco Chicchiriccò (JIRA)" <ji...@apache.org> on 2015/09/08 08:50:45 UTC
[jira] [Issue Comment Deleted] (SYNCOPE-119) Realm-based
authorization
[ https://issues.apache.org/jira/browse/SYNCOPE-119?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Francesco Chicchiriccò updated SYNCOPE-119:
-------------------------------------------
Comment: was deleted
(was: This issue is functionally complete on core side but completely lacks console support, managed under SYNCOPE-156; once that one is resolved, we can resolve this one as well.)
> Realm-based authorization
> -------------------------
>
> Key: SYNCOPE-119
> URL: https://issues.apache.org/jira/browse/SYNCOPE-119
> Project: Syncope
> Issue Type: New Feature
> Reporter: Francesco Chicchiriccò
> Assignee: Francesco Chicchiriccò
> Fix For: 2.0.0
>
>
> The current authentication / authorization model has some weaknesses, as outlined at [1].
> In the same mail thread a refactoring proposal is shown for implementing a system-wide realm-based hierarchical security model.
> This will impact nearly every component and layer in the system, so great care should be taken and extensive testing.
> Discussion on wiki: https://cwiki.apache.org/confluence/display/SYNCOPE/%5BDISCUSS%5D+Realms
> [1] http://syncope-dev.1063484.n5.nabble.com/syncope-dev-Authorization-entitlements-td4830322.html
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)