Turmeric SOA - Security and Policy
-
Upload
kingargyle -
Category
Technology
-
view
820 -
download
0
Transcript of Turmeric SOA - Security and Policy
Intalio eBayOpenSource.org LaunchWebinar 24 May 2011
AgendaIntroductionsArchitecture OverviewMonitoring Console and Policy Admin DemosWhat just happened?Security Services OverviewGet Involved
Presenter: Ismael
Your PresenterDavid Carver Columbus, OHIntalio Project Lead
Eclipse: Architecture Council Member, Eclipse Committer- XSL Tools, Vex, XQuery, Xpath 2.0 Processor, DashEclipseCon program commiitee member, 2010, 2011
Former XML Data Architect for STAR.
Twitter: kingargyleBlog: http://intellectualcramps.wordpress.comGitHub: github.com/kingargyle
Presenter: Ismael
Architecture
Monitoring ConsoleDemo
Policy AdminstrationDemo
Hydroelectric pipelines leading to Kinlochleven, Scottland
Pipelines for Decoupling Services
Communicating with Services
Direct CommunicationPipeline Handlers
Allows for a series of Services to be Called and Pre-Condition Checks to Occur
Decoupling of the Business Process from the Service.
Remote InvocationConsumers can be Turmeric, Axis2, XMLHTTP, etc.
org.ebayopensource.turmeric.securitycommon.spf.impl.handlers.ServerCredentialHandler X-TURMERIC-SECURITY-USERID X-TURMERIC-SECURITY-PASSWORD org.ebayopensource.turmeric.services.authenticationservice.impl.handler.AuthenticationHandler org.ebayopensource.turmeric.services.authorizationservice.impl.handler.AuthorizationHandler org.ebayopensource.turmeric.services.authorizationservice.impl.handler.ObjectAuthorizationHandlerPolicyService:deleteSubjectGroups:deleteSubjectGroupsRequest/subjectGroupKey/subjectGroupName; PolicyService:deleteSubjectGroups:deleteSubjectGroupsRequest/subjectGroupKey/subjectGroupId; PolicyService:updateSubjectGroups:updateSubjectGroupsRequest/subjectGroups/SubjectMatch/AttributeValue;PolicyService:updateSubjectGroups:updateSubjectGroupsRequest/subjectGroups@SubjectGroupName; PolicyService:updatePolicy:updatePolicyRequest/policy@PolicyName; PolicyService:updatePolicy:updatePolicyRequest/policy@PolicyId; PolicyService:disablePolicy:disablePolicyRequest/policyKey/policyName; PolicyService:disablePolicy:disablePolicyRequest/policyKey/policyId;PolicyService:enablePolicy:enablePolicyRequest/policyKey/policyName; PolicyService:enablePolicy:enablePolicyRequest/policyKey/policyId;PolicyService:deletePolicy:deletePolicyRequest/policyKey/policyName; PolicyService:deletePolicy:deletePolicyRequest/policyKey/policyId;true
Pipeline Configuration Policy Service
Security and Policy ServicesGluing Everything Together
Policy Enforcement Service
Monitoring ConsolePolicy AdminAll Call Policy Service
Authorization Service
Policy Service
Manages PolicesCreation, Deletion, Update of Policies
Assignment of Users, Groups, Resources
Configurable Types of Policies through Providers
Data StructureXACML Based on the OASIS standard.
Does not implement the processing of Policies just their storage and retrieval.
Turmeric provides a DAO implementation using MySQL and Hibernate
Adopters can add their own providers
Get InvolvedProject Home
https://www.ebayopensource.org/index.php/Turmeric/HomePage
Documentation https://www.ebayopensource.org/index.php/Documentation/Home
SupportForums https://www.ebayopensource.org/forum/
IRC freenode.net #turmeric and #turmeric-dev
Paid Support - Intalio
Downloads https://www.ebayopensource.org/index.php/Turmeric/Downloads
How to Contributehttps://www.ebayopensource.org/index.php/Turmeric/Contributing
2011 Intalio
2011 Intalio