5 Replies Latest reply on Feb 20, 2007 4:55 AM by marklittle

ESB security features

jval Jan 18, 2007 5:05 PM

Are the ESB security features based on the AS security?? The AS security is implemented by the JBoss Security project??

Help please, resourcfes, links, docs, anything!

Thank you very much.

Javier

1. Re: ESB security features

marklittle Jan 18, 2007 6:10 PM (in response to jval)

The ESB security will certainly support AS security.
Actions
2. Re: ESB security features

jval Jan 18, 2007 6:30 PM (in response to jval)

Are there any other capabilities than the existing ones in the AS?

What's the relationship between de AS security and the JBoss security project??

Thank you very much Mark.

Javier.

P.S.: excuse my english.
Actions
3. Re: ESB security features

marklittle Jan 18, 2007 6:35 PM (in response to jval)

There are other security specifications and standards that we will support. For example, OASIS WS-SX will be the standard for Web Services and we will try to leverage that within the ESB, even when you're not using SOAP and WSDL.
Actions
4. Re: ESB security features

burrsutter Feb 19, 2007 9:29 PM (in response to jval)

How should we handle the concept of authorization? Seam has recently gone to the concept of using JBoss Rules in its new security framework. Perhaps we can leverage some of those concepts as it relates to service lookup and service invocation (what your group can see, what you group can call).
Actions
5. Re: ESB security features

marklittle Feb 20, 2007 4:55 AM (in response to jval)

We could certainly look at JBR as a basis for an implementation. However, we need an abstract notion of authorisation and security in order to allow other implementations to be tied in.
Actions

Go to original post