The Apache Directory Project announces the fifth release of Fortress. FORTRESS provides a Role-Based Access Control system that is fully ANSI INCITS 359 compliant and production ready. Its components may be embedded as a runtime Java library (fortress-core), secure Apache Tomcat web deployments (fortress-realm), HTML pages for administration (fortress-web), and RESTful service wrappers of the core apis (fortress-rest).
Fortress not only covers policy enforcement (i.e. authentication, authorization), but manages the policy lifecycle with apis to add, update, delete and interrogate data stored in the backend LDAP repository. Additionally, there is support for administrative delegation to control which security administrators may update what policy elements under a particular organization’s users, roles and permissions. To download source or binary packages of this release: http://directory.apache.org/fortress/downloads.html Or, the components are downloadable via Maven’s central repository under group name: org.apache.directory.fortress This major revision includes the following: * FC-116 - Basic ABAC capabilities: https://issues.apache.org/jira/browse/FC-144 * FC-144 - Enhanced group-to-role mappings: https://issues.apache.org/jira/browse/FC-144 * FC-181 - Multitenancy for Realm and Web components: https://issues.apache.org/jira/browse/FC-181 The complete list of enhancements and bug fixes can be found in this JIRA report: * https://issues.apache.org/jira/browse/FC-200?jql=project%20%3D%20FC%20AND%20fixVersion%20%3D%202.0.0-RC1%20ORDER%20BY%20updated%20DESC%2C%20priority%20DESC%2C%20created%20ASC For more information, visit the project's website: http://directory.apache.org/fortress/
