Changes

Jump to navigation Jump to search

Security: Use Cases (edit)

Revision as of 16:18, 2 July 2013

27 bytes added ,  16:18, 2 July 2013
m
no edit summary
This page will summarize first thoughts on annotation-based security/authentication support in BaseX.
Annotation specification : (first thoughts: Responsible for performing the login of an user, see sec:authenticate and sec:login functions in the security module :)<br />'''%sec:authenticate()''' <br />
(: The basic security annotation enforcing a authorization on method invocation.:) <br />
(: The literal defines a principal which must be assigned to the current logged in user :) <br />
(: If the authorization was not successfull the default authorization fallback is called. @see %sec:authorization-fallback() :) <br />
'''%sec:requires-principal(string) ''' <br />
(: The basic security annotation enforcing a authorization on method invocation.:) <br />
(: The first literal defines a principal which must be assigned to the current logged in user :) <br />
(: The second defines the fallback function which should be called if the authorization was not successful @see %sec:authorization-fallback(string) :) <br />
'''%sec:requires-principal(string,string) ''' <br /> (: Enforces an authentication but no authorization :) <br />'''%sec:requires-login()''' <br />
(: The default authorization fallback function. The function must not have any arguments :) <br />
(: relevant information like the current username might be available through additional xquery function in the security module :) <br />
'''%sec:authorization-fallback() ''' <br />
(: An authorization fallback function addressable for %sec:requires-principal(string,string) by given id. The function must not have any arguments :) <br />
(: relevant information like the current username might be available through additional xquery function in the security module :) <br />
'''%sec:authorization-fallback(string) ''' <br />
(: The default authentication fallback function. The function must not have any arguments :) <br />
(: relevant information like the current username might be available through additional xquery function in the security module :) <br />'''%sec:authentication-fallback() <br /> (: Provides default credentials if the authentication was not successful :) <br />%sec:credentials() ''' <br />
Marcel Hanser
administrator, editor
13

edits

Retrieved from "http://docs.basex.org/wiki/Special:MobileDiff/9297...9719"

Navigation menu