tag:blogger.com,1999:blog-7391783704166348052.post5937107896167747841..comments2024-03-15T22:26:58.542-07:00Comments on Open Source Security: Authorization for web services using XACML 3.0 Colm O hEigeartaighhttp://www.blogger.com/profile/10711987281965801793noreply@blogger.comBlogger5125tag:blogger.com,1999:blog-7391783704166348052.post-47861621230241508482017-03-27T04:45:41.851-07:002017-03-27T04:45:41.851-07:00Pretty cool, thanks for posting that.Pretty cool, thanks for posting that.Colm O hEigeartaighhttps://www.blogger.com/profile/10711987281965801793noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-39039910085581303202017-03-11T10:44:34.535-08:002017-03-11T10:44:34.535-08:00Thanks for the test cases. They are very useful to...Thanks for the test cases. They are very useful to demonstrate PEP-PDP features in a real-world use case. For your information, I have adapted them for another XACML 3.0 implementation called <a href="https://authzforce.ow2.org" rel="nofollow">AuthzForce</a>. I made two test cases actually:<br /><br />1) One similar <a href="https://gitlab.ow2.org/authzforce/server/blob/master/webapp/src/test/java/org/ow2/authzforce/web/test/pep/cxf/RESTfulPdpBasedAuthzInterceptorTest.java" rel="nofollow">test case</a> using a remote AuthzForce PDP as a REST service (the <a href="https://gitlab.ow2.org/authzforce/server/blob/master/webapp/src/test/java/org/ow2/authzforce/web/test/pep/cxf/RESTfulPdpBasedAuthzInterceptor.java" rel="nofollow">PEP-like CXF interceptor</a> uses a JAX-RS client to call the RESTful PDP with XACML 3.0 requests);<br /><br />2) Another <a href="https://github.com/authzforce/core/blob/master/pdp-testutils/src/test/java/org/ow2/authzforce/core/pdp/testutil/test/pep/cxf/EmbeddedPdpBasedAuthzInterceptorTest.java" rel="nofollow">test case</a> using an embedded (Java) AuthzForce PDP (the <a href="https://github.com/authzforce/core/blob/master/pdp-testutils/src/test/java/org/ow2/authzforce/core/pdp/testutil/test/pep/cxf/EmbeddedPdpBasedAuthzInterceptor.java" rel="nofollow">PEP-like CXF interceptor</a> uses a Java API to call the PDP instead of XACML 3.0 requests, but the policies are still standard XACML 3.0 policy documents).<br /><br />Cyril Dangervillehttps://www.blogger.com/profile/11353871609954499133noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-21326576108498838192015-12-22T03:23:24.366-08:002015-12-22T03:23:24.366-08:00It should be fine now: http://repository.apache.or...It should be fine now: http://repository.apache.org/content/groups/snapshots/org/apache/openaz/Colm O hEigeartaighhttps://www.blogger.com/profile/10711987281965801793noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-21547851052422912942015-12-22T02:05:16.967-08:002015-12-22T02:05:16.967-08:00Greate sample, but I can't get it running beca...Greate sample, but I can't get it running because it complains that it can not find the openaz 0.0.1-snapshot in the mvn repository.pieterhttps://www.blogger.com/profile/16383889876516766632noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-60344368017233002612015-12-22T02:03:59.029-08:002015-12-22T02:03:59.029-08:00This comment has been removed by the author.pieterhttps://www.blogger.com/profile/16383889876516766632noreply@blogger.com