OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

xacml-users message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: XACML with posted XML request for OGC Web Processing Service


We want to protect an OGC Web Processing Service using XACML 2.0 policies. WPS executes requests
contained in an input XML document which is sent as post data. Authorization may depend on
parameters containined in that documents. One approach would be for the PEP to create a SAML request
using the XAML-SAML profile. The WPS request document could be embedded in a ResourceContent
element. AttributeSelectors could be used to select parameters in the WPS document, such as the
source of the data to be processed by the service, which are used to make authorization decisions.

Since the XML fragment contained in the ResourceContent is not actually the content of a resource,
is this an abuse of the element? Is there a better way of representing the WPS data in XACML?

This message is commercial in confidence and may be privileged. It is intended for the
addressee(s) only. Access to this message by anyone else is unauthorized and strictly prohibited.
If you have received this message in error, please inform the sender immediately. Please note that
messages sent or received by the Tessella e-mail system may be monitored and stored in an
information retrieval system.





[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]