OpenAz Main Page

From OpenLiberty.org Wiki

1 User's Guide to the Java XACML Az Interface
2 News: C++ Version of PEP API
3 Java Download Information
4 Overview
5 Technical Details
6 Participate

User's Guide to the Java XACML Az Interface

We have had a number of requests for a single document that describes the Java XACML Az interface. We have edited the large amount of information that is available in Javadoc and in test programs to create a short document. The document includes a simple and advanced example, as well as a review of the key interface definitions.

News: C++ Version of PEP API

A C++ OpenSource translation of the OpenAz XACML PEP API for Attribute-based Access Control has been added to the repository.

Now developers of C++ ABAC solutions can have a C++ based PEP solution to interface to their own PDP.

Conceptually, this looks like this:

(User) <---> (C++ OpenAz PEP) <---> (Vendor-Specific Shim) <---> (Vendor-Specific API)

This project is written in ANSI/ISO C++, with an encompassing solution written in Microsoft Visual Studio (2008, on a 32-bit Windows OS); but is expected to be easily ported to alternative C++ compilers with very little change.

The source code is available here: C++ Source Code

Thanks go to all the folks at NextLabs, Inc. (http://www.nextlabs.com/html/) for this useful work.

OpenAz is one step closer to being the multi-language, multi-platform open source approach for integrating Access Control.

Java Download Information

If you are ready to dive into the code:

DOWNLOAD TARBALL

DOCUMENTATION FOR DEVELOPERS

Download, Build and Run Instructions.

Tutorial on implementing a provider.

Overview

For the latest summary of the project, check out these Project Overview Slides.

This diagram illustrates the vision of OpenAz. The AzAPI provides access from Policy Enforcement Points implemented using various technologies to remote or embedded Policy Decision Points. This stan dardized interface simplifies implementation and makes it easy to replace one component with another.