Approach: continued

gaa_get_object_acl

gaa_check_authorization

GAA API

ACL

. . .

GAA API

security

context

5

5a

Security

Server

1

2

3

4

4a

6

6a

6b

(1, 2, 3, 4, 4a) request and verification of principal’s identity

(5, 5a) call to the gaa_get_object_acl, retrieval of appropriate ACL

(6, 6a, 6b) call to the gaa_check_authorization

(7) GAA API answer

Security API, e.g. GSS API

Application

7

Previous slide

Next slide

Back to first slide

View graphic version