...
A general design principle of the FSL approach is that an object ideally belongs to one collection for authorization purposes, providing a simpler approach to policy interpretation. However, sample policy templates will be provided which show more complex examples with multiple parents for one object. FSL will look at an approach that allows an object to be assigned to a policy object in the policy repository using a special predicate.
Authentication (AuthN)
Wiki Markup Support _surrogate authentication_ and document how to do it \[This needs clarification.\]
- Support LDAP, AD and Tomcat-Users by refactoring the existing servlet filters to make them more user friendly
Wiki Markup Implement authentication in a modular way so that participating organizations can write their own adapters (ie. Drupal integration) \[This needs some additional information from Paul.\]
...