directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Emmanuel Lecharny" <elecha...@gmail.com>
Subject Re: [Triplesec] [AuthZ] Applications and Roles
Date Wed, 24 Oct 2007 21:37:59 GMT
Very clear.

Do we have those definitions on the web site, or should we inject them ?

On 10/24/07, Alex Karasulu <akarasulu@apache.org> wrote:
> Applications and Roles
> ---------------------------------
>
> Application designers devise security permissions and roles specific to
> applications.  These
> roles represent a set of rights authorizing principals to perform operations
> or access resources
> that must be allowed to fulfill a specific coherent function within
> applications.  These rights to
> access resources are the permissions.  The set of these permissions, needed
> for a logical
> function to be conducted in the application, is a role.
>
> To be concise we extract the following glossary definitions:
>
> Permission:
>    A right required by a system or application to authorize principals to
> perform a
>    specific operation or access a resource in some manner.
>
> Role:
>    A set of permissions required by a principal to be authorized to fulfill
> a logical function
>    within a system or application.
>
> Thanks,
> Alex
>


-- 
Regards,
Cordialement,
Emmanuel L├ęcharny
www.iktek.com

Mime
View raw message