Extracts the caller's role from the assertion's attribute (for example: "Guest"), in order to assign an authorization level to the caller.
从断言属性中提取调用方角色(例如“Guest”)以便为调用方分配授权级别。
Access control granularity specifies the authorization level which administrative domain provides service for users, such as directory authorization level, file authorization level etc.
访问控制粒度指明系统为用户授权的层次,如目录级授权与文件级授权等。
It is also possible to have a certain level of authorization for users that have not been authenticated.
还有一种可能是用户虽然具有了某种程度的授权,却并未经过身份验证。
From a security perspective, attribute-level granularity of authorization privileges across all functions such as workflow, relationship and hierarchy management must be available for implementation.
从安全性的角度来看,必须跨所有功能(比如工作流、关系和层次结构管理)实现属性级的特权授权粒度。
He understands outside certification provides additional authorization, branding, and level of recognized expertise.
他了解外界的认证提供额外的授权、头衔,和公认的专家经验的水平。
Users with entry level authorization on a given campus can enter the campus and perform some default operations in the public Spaces in the campus.
对给定的校园具有登录级别授权的用户可以进入校园,并在校园的公共空间执行一些缺省操作。
It enforces an authorization process that may limit the end user on the amount of records it can view after the controller level transaction is called.
它实施一个授权过程。在调用控制器级事务之后,这可能限制终端用户可查看的记录数量。
It is essential to consider the possible access paths to every layer of a system, and also to consider how authorization integrates with other security aspects, such as network level protection.
务必考虑系统的每个层次的可能访问路径,同时还要考虑授权如何与其他安全功能(如网络级别的保护)集成。
The attribute specifies the level of authentication required to be performed on the system authorization ID during the establishment of the connection.
该属性指定在连接建立期间需要对系统授权ID进行的身份验证级别。
Historically, this has resulted in applications having to reinvent existing database level authorization and auditing functions inside the application layer.
从历史的角度而言,这导致了应用程序不得不在应用层内重新进行现有的数据库级别的授权和审核功能。
Many other WebSphere application Server resources, such as Work Areas, do not provide for application level authorization.
很多其他WebSphereApplicationServer资源(如工作区)并不提供应用程序级别的授权。
Transaction security is the first level of authorization enforced within MDM Server.
事务安全是MDMServer 中实施的第一级授权。
The ACL file stores the various principals and their level of authorization for the operations on the Kerberos database.
ACL文件存储操作Kerberos数据库所用的各个主体及其授权级别。
Ben also talked about advanced web security requirements like method level authorization, JSR-250 for defining method security metadata, Spring security method metadata, and domain access control.
Ben还谈到了一些高级web安全需求,例如方法层的授权、定义方法安全元数据的JSR- 250规格、SpringSecurity方法元数据以及领域的访问控制等。
You have a proxy server that performs important authorization to limit who can access what applications at a coarse grained level.
有一个代理服务器,它执行重要的授权,以很粗的粒度限制谁可以访问什么应用程序。
You could provide an override flag to enable actions on active servers, but this should require some level of userID/password authorization – at the very least -- to do so.
您可以提供一个覆盖标志,从而能够对激活状态下的服务器执行操作,但是这(至少)需要一定程度的用户 ID/密码权限才能完成。
We need to add one thing to this file to extend the policy definition for class instance-level authorization: an optional relationship parameter associated with a permission statement.
我们需要向这个文件添加一个东西为类实例级授权扩展策略定义:一个与许可权语句相关的可选关系参数。
Authorization, by contrast, is the mechanism by which a system determines what level of access a particular authenticated user should have to secured resources controlled by the system.
相比之下,授权是系统用来决定已通过认证的某个特定用户访问系统控制的安全资源的访问级别的一种机制。
The most important thing to note when extending JAAS for class instance-level authorization is that the permission implementation class must have a three-parameter constructor.
在为类实例级授权扩展JAAS时要注意的最重要的一点是:许可权实现类必须有一个带三个参数的构造函数。
With a little bit of work, we can extend JAAS to include a generalized class instance-level authorization framework.
只要做一点工作,我们将可以扩展JAAS,使其包含一个通用的、类实例级的授权框架。
The second level builds on the transport security, because you use the authorization that is provided in the transport.
第二层安全措施构建在传输上,因为使用的授权是在传输上提供的。
Simulate the testing of the local authorization for an instance-level operation (without the user ID and password).
模拟实例级操作(没有用户ID和密码)的本地授权测试。
This pattern provides a more granular level of authorization than is typically provided by J2EE role-based authorization, getting down to the level of an individual object within a system.
与J2EE基于角色的授权通常提供的授权相比,此模式提供了更细粒度的授权,可以一直细化到项目内的单个对象的级别。
Users require root-level authorization and a working knowledge of AIX system administration.
用户需要具有根级别授权并且具有AIX系统管理的应用知识。
Database-level security measures including authentication and authorization might also be used to enhance application security.
数据库级的安全措施,包括身份验证和授权,也可以用于加强应用程序的安全性。
Business services that are enabled to implement authorization on service and attribute level, supporting privacy and security aspects of the master data since it needs to secured and governed.
在服务和属性级别上启用身份验证的业务服务,支持主数据的私密性和安全性,因为它需要保护和治理。
To address application-level security requirements of SaaS, your architecture should address authentication and authorization requirements. Two scenarios in this article illustrate.
要处理SaaS的应用程序级安全需求,您的体系结构应该处理身份验证和授权需求。
The Subject thus returned reveals the identity of the authenticated user that can be used for logging and/or data-level authorization purposes, etc.
这样返回的Subject 表明了认证用户的身份,可以用于登录和/或数据级的授权等。
For example, you can only perform authorization at the method level of an EJB or servlet, not at the instance level.
例如,您可以只在EJB或Servlet的方法级上执行授权,而不必在实例级上执行授权。
Our goal is to demonstrate how to enable the integration of the message-level security tokens for use with the JEE authorization framework on WebSphere Application Server.
我们的目标是演示如何支持消息级安全令牌的集成,以在WebSphereApplication Server上结合使用JEE授权框架。
应用推荐