You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@syncope.apache.org by "Francesco Chicchiriccò (JIRA)" <ji...@apache.org> on 2015/03/23 14:25:11 UTC

[jira] [Updated] (SYNCOPE-119) Realm-based authorization

     [ https://issues.apache.org/jira/browse/SYNCOPE-119?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Francesco Chicchiriccò updated SYNCOPE-119:
-------------------------------------------
    Description: 
The current authentication / authorization model has some weaknesses, as outlined at [1].

In the same mail thread a refactoring proposal is shown for implementing a system-wide realm-based hierarchical security model.
This will impact nearly every component and layer in the system, so great care should be taken and extensive testing.

Discussion on wiki: https://cwiki.apache.org/confluence/display/SYNCOPE/%5BDISCUSS%5D+Realms

[1] http://syncope-dev.1063484.n5.nabble.com/syncope-dev-Authorization-entitlements-td4830322.html

  was:
The current authentication / authorization model has some weaknesses, as outlined at [1].

In the same mail thread a refactoring proposal is shown for implementing a system-wide realm-based hierarchical security model.
This will impact nearly every component and layer in the system, so great care should be taken and extensive testing.

[1] http://syncope-dev.1063484.n5.nabble.com/syncope-dev-Authorization-entitlements-td4830322.html


> Realm-based authorization
> -------------------------
>
>                 Key: SYNCOPE-119
>                 URL: https://issues.apache.org/jira/browse/SYNCOPE-119
>             Project: Syncope
>          Issue Type: New Feature
>            Reporter: Francesco Chicchiriccò
>             Fix For: 2.0.0
>
>
> The current authentication / authorization model has some weaknesses, as outlined at [1].
> In the same mail thread a refactoring proposal is shown for implementing a system-wide realm-based hierarchical security model.
> This will impact nearly every component and layer in the system, so great care should be taken and extensive testing.
> Discussion on wiki: https://cwiki.apache.org/confluence/display/SYNCOPE/%5BDISCUSS%5D+Realms
> [1] http://syncope-dev.1063484.n5.nabble.com/syncope-dev-Authorization-entitlements-td4830322.html



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)