Overview of Yanel Access Control Components
Each Yanel realm can have its own IdentityManager and PolicyManager, whereas the IdentityManager is responsible for authentication and the PolicyManager for Authorization. Additionally a Yanel realm can also have its own WebAuthenticator, which can make sense if custom HTTP headers are being used, such as for instance for Single-Sign-On solutions.Authentication Usecases
Yanel currently supports the following authentication usecases:- HTTP BASIC and DIGEST
- Web Forms (XHTML)
- Neutron
- OpenID
- Single-Sign-On through custom HTTP headers
Other usecases can be easily implemented by introducing a custom WebAuthenticator. The actual authentication is being delegated in most cases (an exception is for instance OpenID) to the IdentityManager, whereas one can also introduce a custom IdentityManager (e.g. LDAP authentication is currently done by a dedicated LDAPIdentityManager.
Your comments are much appreciated
Is the content of this page unclear or you think it could be improved? Please add a comment and we will try to improve it accordingly.