This page will capture the Authentication and Authorization Requirements for DSpace+2.0
Initially we are porting specific behavior from DSpace 1.x that supports a plugable Authentication and Authorization Stack for DSpace. In DSpace+2.0+AuthNZ is broken up into three primary interfaces.
Authenticate a Principal
Get the Principals Groups (possibly cache all permissions?)
Evaluate the Principal and Groups against specific Actions/Resource Policies