Changes between Version 4 and Version 5 of proposals/ImprovedSecurityArchitecture


Ignore:
Timestamp:
Dec 15, 2010, 9:27:08 AM (14 years ago)
Author:
heikki
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • proposals/ImprovedSecurityArchitecture

    v4 v5  
    9797[[Image(component-model.png)]]
    9898
     99=== GeoNetwork application ===
     100
     101This section discusses the changes to the GeoNetwork application.
     102
     103GeoNetwork uses session to maintain state about the privileges of the current user. This remains exactly the same in this proposal.
     104
     105==== authentication ====
     106
     107The main difference lies in how the authentication is performed. In this proposal GeoNetwork delegates authentication to GAAP; the result of this authentication is a !SecurityToken returned by GAAP and associated to the current session.
     108
     109A UML Activity diagram giving a high-level view of GeoNetwork delegating to GAAP is this:
     110
     111[[Image(GeoNetworkSecurityFilterActivity.png)]]
     112
    99113
    100114=== Backwards Compatibility Issues ===