[jboss-dev-forums] [JBoss AS 7 Development] - RBAC Usecases

[Heiko Braun]

Heiko Braun [https://community.jboss.org/people/heiko.braun] modified the document:

"RBAC Usecases"

To view the document, visit: https://community.jboss.org/docs/DOC-47856

--------------------------------------------------------------
Some use cases to proof the concepts put into place.


*Restricting access to server groups*

+Configuration+: Server groups: "production", "staging". roles: "admin", "developer" 

+Goal+: Restrict access to the production group to the "admin" role in to prevent messing with the production system

+Implications+: Server groups are part of the model but also a logical concept. I.e. restricting access to a group does imply preventing access to conceptually related entities like servers, deployments, etc.

*Support clients & tools that provide their own security model*

+Configuration+: See  https://access.redhat.com/knowledge/docs/en-US/JBoss_Operations_Network/3.1/html-single/Admin_Initial_Setup_Inventory_Groups_and_Users/index.html#roles JON User Guide

+Goal+: Allow interaction with systems that provide their own authorization scheme

+Implications+: Systems like JON, that provide their own scheme currently can only operate the super user level
--------------------------------------------------------------

Comment by going to Community
[https://community.jboss.org/docs/DOC-47856]

Create a new document in JBoss AS 7 Development at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=102&containerType=14&container=2225]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-dev-forums/attachments/20121107/bdcb1922/attachment.html