Last post Apr 28, 2016 08:27 AM by Candice Zhou
Apr 20, 2016 08:20 PM|ashishtechie|LINK
Hi, we want to extract our authorization logic out of applications and put it outside.
We were using Azman earlier but want to move out. I have found references of XACML but does not seem to be very active.
Can someone please put some light in this space?
Apr 21, 2016 08:25 AM|Candice Zhou|LINK
Welcome to ASP.NET Forums!
I think you could use claims-based authorization to accomplish externalized authorization capabilities.
If you want to use XACML. In XACML, you have the notion of an authorization engine called the Policy Decision Point (PDP). That PDP links together all the information it needs to make decisions.
For more information, please see:
Apr 26, 2016 06:12 PM|ashishtechie|LINK
I would like to go claims-based but claims-based authorization i could not find any provider which can do the PDP thing. Or are you suggesting to use XCAML as PDP with claim-based.
Also, do you know good open-source XACML PDP implementations?
Apr 28, 2016 08:27 AM|Candice Zhou|LINK
You could refer to the below examples: