...
Following the initial implementation of the Web Access Control [109] authorization module, this release furthers that effort with several fixes and improvements. Enhancements include:
WebACLs can now apply to binary resources
An HTTP header, 'On-Behalf-Of', can optionally be configured to offer delegated authorization (documentation [1110])
- A WebACL can be placed on the server acting as the final backstop for authorization decisions for resources that have no other effective WebACL (documentation [1211])
- WebACLs can now include references to 'agentClass' Fedora resources as defined in the Web Access Control specification (documentation [1312])
- An HTTP 'Link' header is included in responses to protected resources pointing to the effective WebACL
Additional documentation of Fedora's implementation of Web Access Controls is available on the wiki [1413].
Expand | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||
|
...
No Format |
---|
[1] https://wiki.duraspace.org/display/FF/Downloads [2] http://docs.fcrepo.org/ [3] http://www.w3.org/TR/ldp/ [4] http://www.w3.org/wiki/WebAccessControl [5] https://wiki.duraspace.org/display/FF/2015+-+2016+Technical+Priorities [6] https://en.wikipedia.org/wiki/Technology_Compatibility_Kit [7] https://github.com/fcrepo4-exts/migration-utils [8] https://github.com/dain/leveldb [9] http://camel.apache.org/ [10] http://www.w3.org/wiki/WebAccessControl [1110] https://wiki.duraspace.org/display/FEDORA45/Principal+Providers#PrincipalProviders-DelegateHeaderPrincipalProvider [1211] https://wiki.duraspace.org/display/FEDORA45/Default+Filesystem-based+Policy [1312] https://wiki.duraspace.org/display/FEDORA45/How+to+Use+WebAC+agentClass+Groups [1413] https://wiki.duraspace.org/display/FEDORA45/WebAC+Authorization+Delegate |