You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@jena.apache.org by cl...@apache.org on 2016/11/07 22:06:33 UTC
svn commit: r1768598 -
/jena/site/trunk/content/documentation/fuseki2/fuseki-security.mdtext
Author: claude
Date: Mon Nov 7 22:06:33 2016
New Revision: 1768598
URL: http://svn.apache.org/viewvc?rev=1768598&view=rev
Log:
Corrected typo
Added Permissions paragraph.
Modified:
jena/site/trunk/content/documentation/fuseki2/fuseki-security.mdtext
Modified: jena/site/trunk/content/documentation/fuseki2/fuseki-security.mdtext
URL: http://svn.apache.org/viewvc/jena/site/trunk/content/documentation/fuseki2/fuseki-security.mdtext?rev=1768598&r1=1768597&r2=1768598&view=diff
==============================================================================
--- jena/site/trunk/content/documentation/fuseki2/fuseki-security.mdtext (original)
+++ jena/site/trunk/content/documentation/fuseki2/fuseki-security.mdtext Mon Nov 7 22:06:33 2016
@@ -13,13 +13,19 @@ connecting using the `http://localhost:.
`127.0.0.1` (IPv4), or `[::1]` (IPv6), not the external IP address of the
machine.
+Once shiro has been configured to perform user authentication it provides
+a good foundation on which to implement the [Jena Permissions](../permissions/)
+layer. There is an [example implementation](../permissions/example.html)
+documented in the Jena Permissions section. The Jena Permissions layer can
+be used to restrict access to specific graphs or triples within graphs.
+
There is an example to enable simple user/password security; this is only
suitable where the connection is secure, is shown `shiro.ini` file with
defaults user 'admin' and password 'pw'. These should be changed before
use.
This has some use where the server is in a secure network environment with
-additional restrictions on extenral requests also applied. behind a
+additional restrictions on external requests also applied. behind a
reverse proxy and the connection can have addition security (e.g. no access
to URLs starting '/$/').
@@ -73,3 +79,5 @@ It adds a `[users]` section and changes
/$/** = authcBasic,user[admin]
# Everything else
/**=anon
+
+