[cap-talk] web services authorization for java web start. How?
Karp, Alan H
alan.karp at hp.com
Mon Feb 2 12:43:35 EST 2009
John Carlson wrote:
>
> 2. Use some kind of SAML. How do people get their initial
> authorization for this?
>
See http://www.hpl.hp.com/techreports/2007/HPL-2007-105.html. In that approach, they get their authorizations from their domain controllers when they authenticate. We don't say how that policy gets expressed, but we get less push back if we say people can use XACML with identity, roles, or attributes.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list