Opensource Authentication and Authorization

Abstract

As web applications become the norm for application delivery mechanisms, there is more and more demand for managing access control at the application framework level. As is immediately obvious, managing this access control becomes an overwhelming overhead for the actual application, and should be handled by the underlying framework used for application delivery.

Opensource projects such as ForgeRock OpenAM, (Formerly OpenSSO) can provide both Authentication services, as well as Authorization services to applications, utilising a simple REST or SOAP based web service interface. All the management of users, groups and other authentication attributes can be handled by the AuthN/AuthZ application, and delivered to the web application as a service. We can already see this behavior in use, in PAM, or pluggable authentication modules used in many linux environments in use today. However mere authentication is not sufficient in an enterprise environment. Often, group, Community and other membership, or attributes, need to be used to determine access control.

View talk on Parleys.com

Utilizing an external Access control service, such as OpenAM, can offload much of this access control from the application, allowing the access control layer to be provided through a simple, effective Web Service permissions layer.

In this presentation I will demonstrate how the OpenAM authN and AuthZ layers can be simply and easily integrated into an enterprise application, allowing fine grained access control to be enforced at the
application layer, while allowing the administration and management of the policies to be handled by the service provider.

Speaker

Allan Foster

Do you like this talk?

Search by Tag

Below are the 190 labels used in Devoxx 2010 listed alphabetically. Click on a label to see its associated content.

A activiti, actors, adobe, agile, air, ajax, akka, alm, amazon, analysis, android, animations, annotations, apache, ast, asynchronous, atomsphere, authentication, authorization, authz, azure	B bayeux, birt, blackberry, bof, bpm	C caching, camel, cassandra, cdi, ci, clojure, closures, cloud, clusters, collaboration, collections, comet, conference
D-E design, devops, dsl, duchess, dvcs, ec2, eclipse, ehcache, ejb3, ejb31	F faces, fantom, findbugs, flash, flex, flex4, foss	G gae, gaelyk, gis, git, glassfish, google, grails, groovy, gui, guice, gwt
H-I hadoop, hazelcast, hbase, hdfs, hibernate, hive, html, html5, http, hudson, infinispan, ioc, iphone, itext, izpack	J j2ee, java7, java8, javaee, javaee6, javafx, javaposse, javascript, javase, javase7, javase8, jax-rs, jax-ws, jdk, jdk7, jdk8, jms, jmx, jpa, jpa2, jquery, jsf, jsf2, jsonp, jsr299, jsr330, jug, jvm	K-M labs, lambda, loadui, lombok, mahout, mapreduce, maven, methodology, microsoft, mobile, modules, mongodb, morlocks, multicore, mylyn
N-O news, nexus, no-sidebar, nosql, oauth, oltp, openam, openid, openjdk, openoffice, osgi	P-R parleys, patterns, pdf, performance, prototype, puzzlers, quickie, rails, repl, reporting, rest, ria, roo	S scala, scalable, seam, search, servlet, servlet3, soa, soloist, speakers, spock, spring, springmvc, sql, stm, struts, svn, symbian
T-V tapestry, tdd, testing, tools, tools_in_action, twitter, uma, uml, university, url, visualvm, voldemort	W-Z w3c, web20, webos, websockets, websphere, weld, wicket, ws-addressing, wtp, xfa, xhr, xml

Opensource Authentication and Authorization

Abstract

Speaker

Do you like this talk?

Related Presentations

Search by Tag