Agents that perform access control functions use the authorization services of the AgentAPI class. These services enable clients to verify a user’s rights to access a resource, retrieve a user’s privileges with respect to specific resources, and determine the specific access control, if any, that is imposed upon a resource.
You can determine whether a resource is protected by calling the isProtected() method. This method accepts as a parameter the resource that is served by the requesting agent and returns information about the user’s credentials.
Once the user’s identity is validated, the agent calls the authorize() method to determine if the requesting user has access to the requested resource. Agents can perform fine-grained access control by leveraging the collection of response attributes that this method retrieves.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|