2.3.1 Security Provider Functions

The security provider includes the following key functions for authentication and authorization:

Authentication:

authenticate(): Validates user login.

getUser(): Maps user to groups and roles.

getGroups(), getRoles(): Provide list of users, roles, and groups.

Authorization:

getPermission(), setPermission(): Gets and sets Style Intelligence-specific permissions for users, groups, or roles.

The SSO method that you use will determine which functions of the security provider are bypassed. The list below lists the conditions under which certain functions are invoked or bypassed:

Form Based SSO

Authentication:

authenticate(): Invoked

getUser(): Invoked

getGroups(), getRoles(): Invoked

Authorization:

setPermission(), getPermission(): Invoked

Session Based SSO

Authentication:

authenticate(): Bypassed

getUser(): Bypassed, depending on information in SRPrincipal object.

getGroups(), getRoles(): Invoked, when you set permissions via the Enterprise Manager.

Authorization:

getPermission(), setPermission(): Invoked

<< 2.3 Selecting and Configuring a Security Provider © 1996-2013 InetSoft Technology Corporation (v11.4) 2.3.2 Selecting a Security Provider >>