Spring Web Flow能够提供一个JSF平台模型,并提供状态、流和transition的授权,其中,认证和授权的实现应用到了Spring Security。
Spring Web Flow provides a JSF platform model and authorization of States, Flows, and Transitions. It USES Spring Security for authentication and authorization purposes.
本文的讨论对象是亚信统一帐号、认证、授权和审计平台(aiuap1.0),是亚信公司对于4 A安全系统的具体实现。
This article mainly discussed AIUAP1.0 — the account, authentication, authorization and auditing platform of AsiaInfo company, which is a concrete implementation of 4a security system at AsiaInfo.
可采用单点登陆、PKI认证、授权、基于角色的权限分配策略、利用应用网关访问资源,开发适合本系统的工作流访问机制等措施确保信息平台的安全。
The main ways to ensure information platform security are presented, which include PKI certification, authentication, role based access control(RBAC), SSO and working flow technology.
应用推荐