Uploaded image for project: 'Syncope'
  1. Syncope
  2. SYNCOPE-119

Realm-based authorization

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 2.0.0-M1
    • None
    • None

    Description

      The current authentication / authorization model has some weaknesses, as outlined at [1].

      In the same mail thread a refactoring proposal is shown for implementing a system-wide realm-based hierarchical security model.
      This will impact nearly every component and layer in the system, so great care should be taken and extensive testing.

      Discussion on wiki: https://cwiki.apache.org/confluence/display/SYNCOPE/%5BDISCUSS%5D+Realms

      [1] http://syncope-dev.1063484.n5.nabble.com/syncope-dev-Authorization-entitlements-td4830322.html

      Attachments

        Issue Links

          blocks

          Improvement - An improvement or enhancement to an existing feature or task. SYNCOPE-120 Avoid duplication in console's authorization management

          • Major - Major loss of function.
          • Closed
          relates to

          Improvement - An improvement or enhancement to an existing feature or task. SYNCOPE-665 Introduce LogicActions for users and groups

          • Major - Major loss of function.
          • Closed
          requires

          New Feature - A new feature of the product, which has yet to be developed. SYNCOPE-156 New admin UI

          • Major - Major loss of function.
          • Closed

          Activity

            People

              ilgrosso Francesco Chicchiriccò
              ilgrosso Francesco Chicchiriccò
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: