Changes between Version 10 and Version 11 of Internal/Rbac/OrbitRbacDesign/OpenIssues
- Oct 3, 2006, 6:47:23 PM (14 years ago)
v10 v11 15 15 How is access controlled for each ORBIT object? 16 16 17 Use a user-pull architecture where the user pulls his or her roles from a role server and presents them to web servers or use a server-pull architecture where each web server pulls user's roles and uses them for RBAC? See Figures 2 and 3 in [[http://orbit-lab.org/attachment/wiki/Internal/Rbac/RbacResources/p37-park.pdf PSA01]]. LDAP can be used with either architecture, see [[http://orbit-lab.org/attachment/wiki/Internal/Rbac/RbacResources/i01-kluwer01-jpark.pdf PAS01]] for its use in user-pull and [[http://orbit-lab.org/attachment/wiki/Internal/Rbac/RbacResources/p37-park.pdf PSA01]] for its use with SSL between. 18 19 17 Who owns ORBIT data?