Access control is a way of limiting access to a system or to physical or virtual resources. In computing, access control is a process by which users are granted access and certain privileges to systems, resources or information. In older access control systems, users must present credentials before they can be granted access. In current physical systems, these credentials may come in many forms, but these credentials that cannot be transferred in order to provide a heavy security.
Entitlement management is the process granting privileges to resources or users, after fine-grained authentication for controlling access of users. XACML is an OASIS standard that describes both a policy language and an access control decision request/response language (both written in XML).
The following topics discuss how Entitlement Management and XACML can be used in access control.
- Working with Entitlement
- Working with XACML
- Configuring WSO2 EI Entitlement Mediator with Identity Server
- Enabling REST Notifications For XACML Policy Updates
- Identity Server as an XACML Engine
- Working with XACML Multiple Decision Profile Requests
- Fine-grained Authorization using XACML Requests in JSON Format
- Improving XACML PDP Performance with Caching Techniques
- Integrating WSO2 Identity Server with Liferay
- Writing XACML2.0 Policies in WSO2 Identity Server
- Writing XACML3 Policies in WSO2 Identity Server
- Sending Notifications to External PEP Endpoints
- Writing an XACML 3.0 Policy Using XPath