Differences between version 3 and previous revision of RobertButler/Authorization.
Other diffs: Previous Major Revision, Previous Author
| Newer page: | version 3 | Last edited on Thursday, 13 March 2008 5:12:12 | by CyberLeo | Revert |
| Older page: | version 2 | Last edited on Thursday, 28 February 2008 0:15:22 | by CyberLeo | Revert |
@@ -1,2 +1,11 @@
!!! [HMAC Authentication|RobertButler/Authentication]
!!! [HMAC Authorization|RobertButler/Authorization]
+
+* ACL-type
+* Groupings possible (which inherit groups of ACLs)
+* Permissions based
+** Expensive permissions checks are done once, when asking for permission
+** Permissions only requested when needed for the session
+*** Saves processing time for simple one-time actions
+** Once permission is granted, token is 'upgraded' to include the requested permission
+** Frequent permissions checks check only the token, not the ACL table.
version 3
HMAC Authentication
HMAC Authorization
- ACL-type
- Groupings possible (which inherit groups of ACLs)
Permissions based
- Expensive permissions checks are done once, when asking for permission
Permissions only requested when needed for the session
- Saves processing time for simple one-time actions
- Once permission is granted, token is 'upgraded' to include the requested permission
- Frequent permissions checks check only the token, not the ACL table.