Project

General

Profile

Task #2669

Story #2661: handling complicated identity-equivalencies for authorization

Task #2665: Authorization consistency between language implementations

create java tool for returning isAuthorized given AccessPolicy and list of Subjects

Added by Rob Nahf almost 12 years ago. Updated over 11 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Rob Nahf
Category:
Authentication, Authorization
Target version:
Sprint-2012.39-Block.5.4
Start date:
2012-04-30
Due date:
% Done:

100%

Milestone:
CCI-1.0.0
Product Version:
*
Story Points:
Sprint:

Description

Should return the highest level of authorization for the given list.

Specifically needs to NOT consider the fuller picture of rightsHolder that would be in a typical isAuthorized request.

Easiest approach is to wrap and adapt the AuthUtils.isAuthorized(Subject[], Permission, SystemMetadata) method
to get the desired output.

History

#1 Updated by Rob Nahf almost 12 years ago

  • Status changed from New to In Progress

creating d1_authorization_tools project. creates a command-line tool with two modes - one for each tool.

#2 Updated by Rob Nahf almost 12 years ago

  • Status changed from In Progress to Closed
  • % Done changed from 0 to 100

completed build of d1_authorization_tools project / product that compares a SubjectList against an AccessPolicy and returns the maximum Permission for the SubjectList.

#3 Updated by Chris Jones over 11 years ago

  • Target version changed from Sprint-2012.35-Block.5.2 to Sprint-2012.39-Block.5.4

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)