RE: [RE: PROPOSAL: role-based authorization concept]

Tue, 22 Aug 2000 08:02:17 -0700 

Is the code for integrating with NT security via Turbine available?  We are
needing to do exactly that and would appreciate any head start you can give.

Christian Nichols

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Jeff Brekke
Sent: Tuesday, August 22, 2000 7:27 AM
To: JetSpeed
Subject: Re: [RE: PROPOSAL: role-based authorization concept]


"Bielby, Randy J." <[EMAIL PROTECTED]> wrote:
> Is this proposal being presented in such a way as to allow authorization
> from an external source such as LDAP.  It is mentioned here that
role-based
> authorization is a necessity if Jetspeed is to be run inside a company.
In
> conjunction with that the mentioned API should provide a level of
> abstraction as to allow the authorization source be one of many types,
xml,
> ldap, relational, etc.

Yes, this is one of the reasons jetspeed uses turbine.  The
authorization/authentication is already abstracted in turbine.  The current
default implementation is to use a sql backend to store this information.
It
may be changed.  There is talk on the turbine list of some needed an ldap
backend.  For example, we have our turbine back-end hitting our NT domain.
Usernames/passwords are authenticated against nt.  The goups on nt map to
roles/permissions on turbine.  This in turn means that jetspeed
authenticates/authorizes against NT also.  Very nice and simple.

jb

Jeff Brekke
mailto:[EMAIL PROTECTED]
http://sites.netscape.net/ekkerbj


____________________________________________________________________
Get your own FREE, personal Netscape WebMail account today at
http://home.netscape.com/webmail


--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe:        [EMAIL PROTECTED]
To unsubscribe:      [EMAIL PROTECTED]
Archives and Other:  <http://java.apache.org/main/mail.html>
Problems?:           [EMAIL PROTECTED]



--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe:        [EMAIL PROTECTED]
To unsubscribe:      [EMAIL PROTECTED]
Archives and Other:  <http://java.apache.org/main/mail.html>
Problems?:           [EMAIL PROTECTED]

Reply via email to