[jboss-dev-forums] [JBoss AS 7 Development] - ManagementLayer RBAC

[Heiko Braun]

Heiko Braun [https://community.jboss.org/people/heiko.braun] modified the document:

"ManagementLayer RBAC"

To view the document, visit: https://community.jboss.org/docs/DOC-47854

--------------------------------------------------------------
Role based access control to the AS7 management layer.

When defining an RBAC model, the following conventions are useful:
* S = Subject = A person or automated agent
* R = Role = Job function or title which defines an authority level
* P = Permissions = An approval of a mode of access to a resource

*Generic Requirements*
- Provide a usable (in terms of complexity), yet comprehensive base model
- Allow to customizations/extension of the default scheme (i.e custom permissions, permission granularity)

*Specific Requirements*
- [...]*
*

*Advanced Use Cases /  Considerations*

- Context based access control: i.e. Taking the connection into consideratin
- Support for role hierarchies: i.e. structuring roles to reflect an organizations lines of authority and responsibility
- Role constraints: i.e. mutual exclusive roles
- RBAC to manage RBAC itself

structuring roles to re  ect an organiza   tion  s lines of authority and resp onsibility
--------------------------------------------------------------

Comment by going to Community
[https://community.jboss.org/docs/DOC-47854]

Create a new document in JBoss AS 7 Development at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=102&containerType=14&container=2225]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-dev-forums/attachments/20121107/1a2a9c60/attachment.html