[jboss-dev-forums] [JBoss AS 7 Development] - ManagementLayer RBAC
Anil Saldhana
do-not-reply at jboss.com
Wed Feb 27 14:11:18 EST 2013
Anil Saldhana [https://community.jboss.org/people/anil.saldhana] commented on the document
"ManagementLayer RBAC"
To view all comments on this document, visit: https://community.jboss.org/docs/DOC-47854#comment-11653
--------------------------------------------------
I think access control should move beyond RBAC and be based on a combination of the following:
a) User/Subject
b) User Attributes
c) Roles
d) Action
e) Environment (Including IP Address, Subnet, DateTime)
Ideally, it should be a Rules based framework. The policies/rules should not be embedded within code but should externalize.
--------------------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-dev-forums/attachments/20130227/ca0c4f9a/attachment.html
More information about the jboss-dev-forums
mailing list