Return-Path: 
 <dev-return-22209-apmail-directory-dev-archive=directory.apache.org@directory.apache.org>
Delivered-To: apmail-directory-dev-archive@www.apache.org
Received: (qmail 15713 invoked from network); 24 Oct 2007 17:14:36 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 24 Oct 2007 17:14:36 -0000
Received: (qmail 65971 invoked by uid 500); 24 Oct 2007 17:14:23 -0000
Delivered-To: apmail-directory-dev-archive@directory.apache.org
Received: (qmail 65927 invoked by uid 500); 24 Oct 2007 17:14:23 -0000
Mailing-List: contact dev-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@directory.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@directory.apache.org>
List-Post: <mailto:dev@directory.apache.org>
List-Id: <dev.directory.apache.org>
Reply-To: "Apache Directory Developers List" <dev@directory.apache.org>
Delivered-To: mailing list dev@directory.apache.org
Received: (qmail 65916 invoked by uid 99); 24 Oct 2007 17:14:23 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 24 Oct 2007 10:14:23 -0700
X-ASF-Spam-Status: No, hits=2.0 required=10.0
	tests=HTML_MESSAGE,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of akarasulu@gmail.com
 designates 209.85.198.190 as permitted sender)
Received: from [209.85.198.190] (HELO rv-out-0910.google.com) (209.85.198.190)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 24 Oct 2007 17:14:27 +0000
Received: by rv-out-0910.google.com with SMTP id g11so199483rvb
        for <dev@directory.apache.org>; Wed, 24 Oct 2007 10:14:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=beta;
        h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:mime-version:content-type:x-google-sender-auth;
        bh=Bp+ROpPQxS8E6B7IJu0G3bxOExOf7ElmCBnseVTRjhI=;
        b=nsh5QMRkeEmk5YtDgqwdorMhHiFqXpMA/GPVC20cfnoats4yUWnv0woJF0u/8DS8lySQ72TwfTV3PAq0P7GD908lqtd0fH/ydOOwdocYv6NKLnnctCiQ68Ydf03RkZ7bgEhFlW6ERZdFROnQqxtqvb+MhR/EkfOhGVsJ33VXV44=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=beta;
        h=received:message-id:date:from:sender:to:subject:mime-version:content-type:x-google-sender-auth;
        b=kC8ZUQZsb48itCKhaCgR4dCN5C2Pl52fEzejLq0R7F4bp8bTqV602+oMWoLEort47vHYncvNT2p2aSjkFheF3LVnx7AmgG86EWvMs1bCXjmw5GHsryUz4W40h7bIAdYFakkTf2DHJ3nFjUkAIU3L4E2kap20dzE2tkk6EJJkF/Q=
Received: by 10.114.146.1 with SMTP id t1mr953288wad.1193246045415;
        Wed, 24 Oct 2007 10:14:05 -0700 (PDT)
Received: by 10.115.18.12 with HTTP; Wed, 24 Oct 2007 10:14:05 -0700 (PDT)
Message-ID: <a32f6b020710241014ya0c93baja47e96406f7eacc2@mail.gmail.com>
Date: Wed, 24 Oct 2007 13:14:05 -0400
From: "Alex Karasulu" <akarasulu@apache.org>
Sender: akarasulu@gmail.com
To: "Apache Directory Developers List" <dev@directory.apache.org>
Subject: [Triplesec] [AuthZ] Introduction
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----=_Part_9176_1593547.1193246045411"
X-Google-Sender-Auth: f179a60d70b5474f
X-Virus-Checked: Checked by ClamAV on apache.org

------=_Part_9176_1593547.1193246045411
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Introduction
-----------------

This series describes the circumstances resulting in the need for a
centralized
authorization policy management system.  In doing so, it defines a subset of
the
problems that must be solved by Triplesec's Authorization Manager.  These
problems
and the various use cases described here resonate the goals of the Apache
Triplesec
Project with respect to authorization policy.

We're going to talk about applications, identities, permissions, roles,
groups, and the
assignment of roles to individual identities as well as to groups of
identities.  This will
lead us into discussions regarding what these entities are with clear
definitions we can
agree on and use as the nomenclature for this aspect of Triplesec.

Let us try to be as exacting as possible when speaking about these concepts
and
defining them eventually for use in a glossary section of our Triplesec
documentation.

Thanks,
Alex

------=_Part_9176_1593547.1193246045411
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Introduction<br>-----------------<br><br>This series describes the circumstances resulting in the need for a centralized<br>authorization policy management system.&nbsp; In doing so, it defines a subset of the <br>problems that must be solved by Triplesec&#39;s Authorization Manager.&nbsp; These problems
<br>and the various use cases described here resonate the goals of the Apache Triplesec <br>Project with respect to authorization policy.<br><br>We&#39;re going to talk about applications, identities, permissions, roles, groups, and the
<br>assignment of roles to individual identities as well as to groups of identities.&nbsp; This will <br>lead us into discussions regarding what these entities are with clear definitions we can<br>agree on and use as the nomenclature for this aspect of Triplesec.&nbsp; 
<br><br>Let us try to be as exacting as possible when speaking about these concepts and <br>defining them eventually for use in a glossary section of our Triplesec documentation.<br><br>Thanks,<br>Alex<br>

------=_Part_9176_1593547.1193246045411--