On Mon, Jun 1, 2015 at 9:08 PM, Shawn McKinney <[email protected]> wrote:
> Hello, > > This posting is to inform the community of the status of the fortress > product and give hints as to future direction. > > Current Status of Fortress product: > 1. Fortress fully implements ANSI RBAC (INCITS 359). > 2. Fortress provides an SDK, Web UI, Restful component and Tomcat security > plug-ins > > Next steps: > 1. Add support for RFC2307bis which provides UNIX security capabilities > (core, rest, web) > 2. Add support for SSO (new component) > as a guy who implemented a SAML based SSO product this step is particularly interesting to me. Is there a high level overview on what we are aiming for? (and personally, I prefer this to be written based on OpenId Connect and JWT) > 3. Add support for annotation-based policy enforcement in Java EE > components (realm) > 4. Add support for attribute-based access control (core, rest, web) > > This is a community-driven product. It makes no sense to add capabilities > that are not necessary or otherwise won’t be used. So, if this list does > not look right to you, with elements either missing or misplaced - let us > know what you think. > > Best, > > Shawn > [email protected] > > > > -- Kiran Ayyagari http://keydap.com
