| 99 | === GeoNetwork application === |
| 100 | |
| 101 | This section discusses the changes to the GeoNetwork application. |
| 102 | |
| 103 | GeoNetwork uses session to maintain state about the privileges of the current user. This remains exactly the same in this proposal. |
| 104 | |
| 105 | ==== authentication ==== |
| 106 | |
| 107 | The main difference lies in how the authentication is performed. In this proposal GeoNetwork delegates authentication to GAAP; the result of this authentication is a !SecurityToken returned by GAAP and associated to the current session. |
| 108 | |
| 109 | A UML Activity diagram giving a high-level view of GeoNetwork delegating to GAAP is this: |
| 110 | |
| 111 | [[Image(GeoNetworkSecurityFilterActivity.png)]] |
| 112 | |