[teiid-issues] [JBoss JIRA] Resolved: (TEIID-665) Add "authorization" service, and add support for entitlements in "embedded"

Ramesh Reddy (JIRA) jira-events at lists.jboss.org
Tue Jul 7 15:50:51 EDT 2009 

     [ https://jira.jboss.org/jira/browse/TEIID-665?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Ramesh Reddy resolved TEIID-665.
--------------------------------

    Resolution: Done


Authorization service checks for admin related "authorizations" and as well as "entitlements" that are defined on the VDB data. This service defines below properties in the deploy.properties file

# Enable entitlements
entitlements.enabled=false
entitlements.adminRolesFile=./deploy/admin-roles.properties

By default, this service is turned OFF. Enable this by setting 

entitlements.enabled=true

The admin specific authorizations (as to which user has what administrative privileges) are defined in a property file defined by 

entitlements.adminRolesFile=./deploy/admin-roles.properties

The "entitlements" aka "data roles", where you can control which user has access to which data and what kind of operations the user is authorized are defined inside the VDB archive, which will be enforced by this service. Look in documentation for how to define those roles.

> Add "authorization" service, and add support for entitlements in "embedded"
> ---------------------------------------------------------------------------
>
>                 Key: TEIID-665
>                 URL: https://jira.jboss.org/jira/browse/TEIID-665
>             Project: Teiid
>          Issue Type: Sub-task
>          Components: AdminApi, Embedded, Query Engine, Server
>            Reporter: Ramesh Reddy
>            Assignee: Steven Hawkins
>             Fix For: 6.2.0
>
>
> Add authorization service to "embedded". This service will provide functionality "embedded" to check if a given user is entitled to follow though a given administrative task or has a required role to carry on a operation a virtual data base.  
> The "entitlements" information will be available in a well known XML format in VDB archive, VDB service needs to load and make this data available to the "authorization" service, so that Query Engine can make required calls to check the permissions. 

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the teiid-issues mailing list