This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "ESAPI Access Control"
From OWASP
(New page: == Feature Overview == TODO == Possible Enhancements == * TODO * ...) |
|||
Line 5: | Line 5: | ||
== Possible Enhancements == | == Possible Enhancements == | ||
− | + | Currently the access controller simply allows for lookup on an access control matrix. Enhancements will allow for special function(s) to be created for more complex access control rules (for example, a user has access to a file but only Monday - Friday, not on weekends). | |
− | * | + | So the simple case (lookup in an access control matrix: |
+ | * isValid(user, action_string) | ||
+ | |||
+ | Custom Case | ||
+ | * isValid(user, action_string, data) |
Revision as of 14:44, 11 December 2008
Feature Overview
TODO
Possible Enhancements
Currently the access controller simply allows for lookup on an access control matrix. Enhancements will allow for special function(s) to be created for more complex access control rules (for example, a user has access to a file but only Monday - Friday, not on weekends).
So the simple case (lookup in an access control matrix:
- isValid(user, action_string)
Custom Case
- isValid(user, action_string, data)