Differences between revisions 10 and 11
Revision 10 as of 2007-07-15 11:47:45
Size: 1559
Editor: BobHarner
Comment: Renaming Lenya 1.4 to 2.0
Revision 11 as of 2009-09-20 23:27:53
Size: 1573
Editor: localhost
Comment: converted to 1.6 markup
Deletions are marked like this. Additions are marked like this.
Line 20: Line 20:
 * [http://www.orablogs.com/fnimphius/archives/000416.html] (Good overall intro!)
 * [http://www.jcp.org/en/jsr/detail?id=115] JSR 115: JavaTM Authorization Contract for Containers]
 * [http://www.jcp.org/en/jsr/detail?id=196] JSR 196: JavaTM Authentication Service Provider Interface for Containers
 * [[http://www.orablogs.com/fnimphius/archives/000416.html]] (Good overall intro!)
 * [[http://www.jcp.org/en/jsr/detail?id=115]] JSR 115: JavaTM Authorization Contract for Containers]
 * [[http://www.jcp.org/en/jsr/detail?id=196]] JSR 196: JavaTM Authentication Service Provider Interface for Containers
Line 24: Line 24:
 * JAAS [http://java.sun.com/products/jaas/overview.html]  * JAAS [[http://java.sun.com/products/jaas/overview.html]]
Line 28: Line 28:
 * [http://www.theserverside.com/news/thread.tss?thread_id=12311] SAML
 * [http://osoco.sourceforge.net/cowarp/protection.html] Cocoon is about to use this; it's non-JAAS yet but document centric
 * [http://tp.its.yale.edu/tiki/tiki-index.php?page=CentralAuthenticationService]
 * [[http://www.theserverside.com/news/thread.tss?thread_id=12311]] SAML
 * [[http://osoco.sourceforge.net/cowarp/protection.html]] Cocoon is about to use this; it's non-JAAS yet but document centric
 * [[http://tp.its.yale.edu/tiki/tiki-index.php?page=CentralAuthenticationService]]

Opportunitities for Enhanced AAA for Lenya

Status of this document: RT (Random Thought)

Introduction

At this point in time (between the release of 1.2.2 and 2.0) Lenya uses an entirely home grown AAA (read: triple-A, Authentication and Authorization), which is basically based on all AAA relevant information stored in files on the filesystem. For a walkthrough see [AuthenticationAndAuthorizationBackgrounder].

This leaves a lot of room for improvement to meet very different people's and organisations needs.

Potential enhancements

  • JAAS
  • Container Managed Security
  • Single-Sign-On solutions

ProposalEnhancedAaa (last edited 2009-09-20 23:27:53 by localhost)