The solution should implement some type of authentication system to understand who is asking for a resource and an authorization system to decide whether the access should be granted.
此解决方案应该实现某种类型的身份验证系统来理解谁正在请求一个资源,并实现一个授权系统来决定是否向其授予访问权。
While not truly a type of authorization, a closely related problem is that of customizing a user interface to only show the specific functions that a specific user should be allowed to see.
虽然这不是真正的授权类型,但与此紧密相关的一个问题是对用户界面进行自定义,以使其仅显示允许特定用户看到的特定功能。
This type of authorization testing might be called fine-grained access control because it is applied by a running program to virtually any type of resource that the program works with.
此类授权测试可以称为细粒度访问控制,因为运行应用程序将其应用于该程序所使用的几乎任何类型的资源。
The first type, query authorization rules, specify which type a queries a user may execute.
第一种类型是查询授权规则,它们指定一个用户可以执行哪些类型的查询。
In general, servlet filters are used to control the flow of the application based on user type (or authentication and authorization) or page functionality.
通常,基于用户类型(或身份验证和授权)或页面功能将servlet过滤器用于控制应用程序流。
In the demonstration implementation, all permissions in a PermissionSet are required for successful authorization and there is no provision for deny-type permissions.
在演示实现中,成功的授权需要PermissionSet中的所有权限,并且没有提供拒绝类型的权限。
I also am creating a special type of user that can always access the currently logged in user's data without the user's authorization.
我也是创建一种特殊类型的用户可以访问当前登录的用户的数据没有用户的授权。
Gets or sets the type of authorization events to audit at the service level.
获取或设置要在消息级别审核的身份验证事件的类型。
Gets or sets the type of authorization events to audit at the service level.
获取或设置要在消息级别审核的身份验证事件的类型。
应用推荐