next up previous
Next: Configuration Up: Authorization Manager Previous: Internal structure

Query parameters

The basic operation of the Authorization Manager is to respond to a query like
``Is subject DN associated to any attribute?''
The answer will be the first attribute associated to subject DN under the default policy, or the local-ID associated to this attribute when a translation phase is configured for the default policy.

It is possible to perform more sophisticated interrogations, simply by including in the request the following parameters:

Example: the Authorization Manager receives the triplet (subjectDN=Mr.Smith, policy=localDbAccess, attribute=DataGridMember) and replies back with ``ReadAccessOnTableX'', a value that the local application knows how to handle.


next up previous
Next: Configuration Up: Authorization Manager Previous: Internal structure
2004-07-02