helidon/security/providers/abac at master - helidon - Gitea: Git with a cup of tea

jlengrand/helidon

mirror of https://github.com/jlengrand/helidon.git synced 2026-03-10 08:21:17 +00:00

Files

History

Joe DiPol 437fbd730d Update version to 2.1.1-SNAPSHOT (#2462 )

2020-10-16 15:37:23 -07:00

..

Security CDI extension has higher priority (#2299 )

2020-08-31 19:03:31 +02:00

pom.xml

Update version to 2.1.1-SNAPSHOT (#2462 )

2020-10-16 15:37:23 -07:00

README.MD

Security - align module names, directories and packages.

2018-12-30 19:34:10 +01:00

README.MD

Attribute Based Access Control (ABAC) Security Provider

This provider is an authorization provider validating various attributes against configured validators.

Any attribute of the following objects can be used:

environment (such as time of request) - e.g. env.time.year
subject (user) - e.g. subject.principal.id
subject (service) - e.g. service.principal.id
object (must be explicitly invoked by developer in code, as object cannot be automatically added to security context) - e.g. object.owner

This provider checks that all defined ABAC validators are validated. If there is a definition for a validator (e.g. an annotation) that is not checked, the request is denied.

See available validators.