Cimande:Security

From BlueOxygen Wiki

Jump to: navigation, search

Cimande has a security model that based on session and database.

This is the diagram of security leveling


Cimande security level:

  1. the session for user and site
    we implement http session, if the session active, cimande grants you to access the application.
  2. the module privilage (module function)
    we grant your role to access the application, if the active user access another not granted application, the non allowed error will show.
  3. CRUD privilage (ACL)
    this is more deeper than module previlage, so we can have a user that can view only, search only, create only or delete.
  4. GX privilage (under development)
    this is the most advanced one, we will create auto generate security for model driven solution.

We believe that our ACL model is based on tree model. Our interceptor will filter your descriptor based on the tree that active.

Take a look below workspace explorer between Admin and GXAdmin, which the GXAdmin only have GX Tree Module.

This means that Admin's module cannot be accessed inside GXAdmin. All applications inside the Site Manager tree cannot be accessed by GXAdmin which dont have privilage to access it.

Retrieved from "http://www.blueoxygen.org/wiki/index.php/Cimande:Security"
Personal tools