 |
This is a stab at preparing something along the lines the enhancement proposal mentioned here. The solution and implementation sections were stolen from the Security Model page |
Context
Continuum 1.1 needs to start addressing enterprise environments more, which have a different sort of authentication and authorization model and traditional smaller development groups. Enterprises rely more on company directories like LDAP or Active Directory like systems where they can manage all of the different systems that people need access to from centralized locations.
Problem
Some of the interest in continuum is in being able to interface seemlessly with these systems so it needs an authentication and authorization model that is conducive to these sorts of environments, but does not require that they exist. Part of this also involves deciding on a flexiable authorization model that can easily allow for parts of the UI to display for certain users and not for other users. It also needs to be easily managed from either the Continuum UI's or provide and interface for these other systems to grant and deny access to functionalities and/or views. Whatever approach that is used to solve the problem should also be able to be extended to the XML-RPC interface.
Solution
|
The reasoning here would be multiple solutions could be put forth, each on their own child page of the root document. Then once the solution was all agreed on or whatever it would be pulled into this place, and the implementation would be tacked on, if it were in the Solution document like in the examples below. |