Version 1 (modified by 14 years ago) (diff) | ,
---|
AAA overview
Access control is an optional service on the SENSEI test platform. Each public interface in the system can be access controlled or not, at the owner's discretion. Two basic components are required in the system to enable access control:
- an identity provider, which in the SENSEI architecture is a Security Token Service
- an access control decision making function, which in the SENSEI architecture is a AAA block
Table of Contents
How-to: adding access control to my REP
Choosing the form of access control
privilege or payment based tbd
Defining an access policy
needs to refer to the STS role list tbd
Registering the policy
selection of AAA block registration of policy changing / removing the policy tbd
Enforcing the AAA decision
switching on the right bits in the REP tbd