• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Turmeric SOA - Security and Policy
 

Turmeric SOA - Security and Policy

on

  • 773 views

 

Statistics

Views

Total Views
773
Views on SlideShare
744
Embed Views
29

Actions

Likes
0
Downloads
7
Comments
0

4 Embeds 29

https://www.ebayopensource.org 22
http://www.ebayopensource.org 4
http://www.scoop.it 2
http://www.slideshare.net 1

Accessibility

Categories

Upload Details

Uploaded via as OpenOffice

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • Presenter: Ismael
  • Presenter: Ismael

Turmeric SOA - Security and Policy Turmeric SOA - Security and Policy Presentation Transcript

  • Intalio – eBayOpenSource.org Launch Webinar 24 May 2011
  • Agenda Introductions Architecture Overview Monitoring Console and Policy Admin Demos What just happened? Security Services Overview Get Involved
  • Your Presenter David Carver – Columbus, OH Intalio Project Lead Eclipse: Architecture Council Member, Eclipse Committer - XSL Tools, Vex, XQuery, Xpath 2.0 Processor, Dash EclipseCon program commiitee member, 2010, 2011 Former XML Data Architect for STAR. Twitter: kingargyle Blog: http://intellectualcramps.wordpress.com GitHub: github.com/kingargyle
  • Architecture
  • Monitoring Console Demo
  • Policy Adminstration Demo
  • Hydroelectric pipelines leading to Kinlochleven, Scottland Pipelines for Decoupling Services
  •  
  • Communicating with Services
    • Direct Communication
      • Pipeline Handlers
      • Allows for a series of Services to be Called and Pre-Condition Checks to Occur
      • Decoupling of the Business Process from the Service.
    • Remote Invocation
      • Consumers – can be Turmeric, Axis2, XMLHTTP, etc.
  • <request-handlers> <chain name=&quot;servicehandlers&quot;> <handler name=&quot;ServerCredentialHandler&quot;> <class-name> org.ebayopensource.turmeric.securitycommon.spf.impl.handlers.ServerCredentialHandler </class-name> <options> < option name=&quot;credential-userid&quot;>X-TURMERIC-SECURITY-USERID</option> <option name=&quot;credential-password&quot;>X-TURMERIC-SECURITY-PASSWORD</option> </options> </handler> <handler name=&quot;AuthenticationHandler&quot;> <class-name> org.ebayopensource.turmeric.services.authenticationservice.impl.handler.AuthenticationHandler </class-name> </handler> <handler name=&quot;AuthorizationHandler&quot;> <class-name> org.ebayopensource.turmeric.services.authorizationservice.impl.handler.AuthorizationHandler </class-name> </handler> <handler name=&quot;ObjectAuthorizationHandler&quot;> <class-name>org.ebayopensource.turmeric.services.authorizationservice.impl.handler.ObjectAuthorizationHandler</class-name> <options> <option name=&quot; objectXpath &quot;> PolicyService:deleteSubjectGroups:deleteSubjectGroupsRequest/subjectGroupKey/subjectGroupName; PolicyService:deleteSubjectGroups:deleteSubjectGroupsRequest/subjectGroupKey/subjectGroupId; PolicyService:updateSubjectGroups:updateSubjectGroupsRequest/subjectGroups/SubjectMatch/AttributeValue; PolicyService:updateSubjectGroups:updateSubjectGroupsRequest/subjectGroups@SubjectGroupName; PolicyService:updatePolicy:updatePolicyRequest/policy@PolicyName; PolicyService:updatePolicy:updatePolicyRequest/policy@PolicyId; PolicyService:disablePolicy:disablePolicyRequest/policyKey/policyName; PolicyService:disablePolicy:disablePolicyRequest/policyKey/policyId; PolicyService:enablePolicy:enablePolicyRequest/policyKey/policyName; PolicyService:enablePolicy:enablePolicyRequest/policyKey/policyId; PolicyService:deletePolicy:deletePolicyRequest/policyKey/policyName; PolicyService:deletePolicy:deletePolicyRequest/policyKey/policyId; </option> <option name=&quot;skip-on-local&quot;>true</option> </options> </handler> </chain> </request-handlers> Pipeline Configuration – Policy Service
  • Security and Policy Services Gluing Everything Together
  • Policy Enforcement Service Monitoring Console Policy Admin All Call Policy Service
  • Authorization Service
  •  
  • Policy Service
    • Manages Polices
      • Creation, Deletion, Update of Policies
      • Assignment of Users, Groups, Resources
      • Configurable Types of Policies through Providers
    • Data Structure
      • XACML – Based on the OASIS standard.
      • Does not implement the processing of Policies just their storage and retrieval.
      • Turmeric provides a DAO implementation using MySQL and Hibernate
      • Adopters can add their own providers
  • Get Involved
    • Project Home
      • https://www.ebayopensource.org/index.php/Turmeric/HomePage
    • Documentation
      • https://www.ebayopensource.org/index.php/Documentation/Home
    • Support
      • Forums https://www.ebayopensource.org/forum/
      • IRC – freenode.net #turmeric and #turmeric-dev
      • Paid Support - Intalio
    • Downloads
      • https://www.ebayopensource.org/index.php/Turmeric/Downloads
    • How to Contribute
      • https://www.ebayopensource.org/index.php/Turmeric/Contributing