Difference between revisions of "Security: Use Cases"
Line 1: | Line 1: | ||
− | This page | + | This page will summarize first thoughts on annotation-based security/authentication support in BaseX. |
+ | |||
+ | Annotation specification (first thoughts): | ||
+ | |||
+ | (: The basic security annotation enforcing a authorization on method invocation.:) | ||
+ | (: The literal defines a principal which must be assigned to the current logged in user :) | ||
+ | (: If the authorization was not successfull the default authorization fallback is called. @see %sec:authorization-fallback() :) | ||
+ | %sec:requires-principal(string) | ||
+ | |||
+ | (: The basic security annotation enforcing a authorization on method invocation.:) | ||
+ | (: The first literal defines a principal which must be assigned to the current logged in user :) | ||
+ | (: The second defines the fallback function which should be called if the authorization was not successful @see %sec:authorization-fallback(string) :) | ||
+ | %sec:requires-principal(string,string) | ||
+ | |||
+ | (: The default authorization fallback function. The function must not have any arguments :) | ||
+ | (: relevant information like the current username might be available through additional xquery function in the security module :) | ||
+ | %sec:authorization-fallback() | ||
+ | |||
+ | (: An authorization fallback function addressable for %sec:requires-principal(string,string) by given id. The function must not have any arguments :) | ||
+ | (: relevant information like the current username might be available through additional xquery function in the security module :) | ||
+ | %sec:authorization-fallback(string) | ||
+ | |||
+ | (: The default authentication fallback function. The function must not have any arguments :) | ||
+ | (: relevant information like the current username might be available through additional xquery function in the security module :) | ||
+ | %sec:authentication-fallback() | ||
+ | |||
+ | (: Provides default credentials if the authentication was not successful :) | ||
+ | %sec:credentials() |
Revision as of 11:20, 22 May 2013
This page will summarize first thoughts on annotation-based security/authentication support in BaseX.
Annotation specification (first thoughts):
(: The basic security annotation enforcing a authorization on method invocation.:) (: The literal defines a principal which must be assigned to the current logged in user :) (: If the authorization was not successfull the default authorization fallback is called. @see %sec:authorization-fallback() :) %sec:requires-principal(string)
(: The basic security annotation enforcing a authorization on method invocation.:) (: The first literal defines a principal which must be assigned to the current logged in user :) (: The second defines the fallback function which should be called if the authorization was not successful @see %sec:authorization-fallback(string) :) %sec:requires-principal(string,string)
(: The default authorization fallback function. The function must not have any arguments :) (: relevant information like the current username might be available through additional xquery function in the security module :) %sec:authorization-fallback()
(: An authorization fallback function addressable for %sec:requires-principal(string,string) by given id. The function must not have any arguments :) (: relevant information like the current username might be available through additional xquery function in the security module :) %sec:authorization-fallback(string)
(: The default authentication fallback function. The function must not have any arguments :) (: relevant information like the current username might be available through additional xquery function in the security module :) %sec:authentication-fallback()
(: Provides default credentials if the authentication was not successful :) %sec:credentials()