Changes between Version 11 and Version 12 of proposals/ImprovedSecurityArchitecture


Ignore:
Timestamp:
Dec 15, 2010, 9:42:35 AM (14 years ago)
Author:
heikki
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • proposals/ImprovedSecurityArchitecture

    v11 v12  
    162162    * change lookups in GeoNetwork code to the above DBMS tables, to lookup the info in !SecurityTokenMap instead the login form and the non-GUI login ("xml login") delegate the act of logging in to GAAP
    163163
     164=== GAAP application ===
     165
     166This section describes the GAAP application, both its Authentication Service and the administrative GUI interface.
     167
     168==== authentication service ====
     169
     170The Authentication Service is GAAP's raison d'être: to provide authentication functions to its client applications, while acting as a façade to hide details of the underlying security provider(s) from its client applications.
     171
     172Authentication requests from GAAP clients attempt to reach their destination, !AuthenticationService. This will succeed if the request is anonymous (no attempt at authentication is made) or if a succesful authentication happened in the Spring Security !FilterChain that intercepts requests to this service.
     173
     174
     175[[Image(SpringSecurityAuthenticationServiceActivity.png)]]
     176
    164177
    165178=== Backwards Compatibility Issues ===