This page will capture the Authentication and Authorization Requirements for DSpace+2.0

Initially we are porting specific behavior from DSpace 1.x that supports a plugable Authentication and Authorization Stack for DSpace. In DSpace+2.0+AuthNZ is broken up into three primary interfaces.

AuthN

Authenticate a Principal

AuthNZ

Get the Principals Groups (possibly cache all permissions?)

AuthZ

Evaluate the Principal and Groups against specific Actions/Resource Policies