9. Why whada ? (1)
Many internal web services requires
authentication/authorization.
Authentication per services:
chaos
management worry
poor UI
2011 10 15
10. Why whada ? (2)
Password dictionary is very sensitive
and dangerous:
new commers
retired employees
password changes
2011 10 15
11. Why NOT
ActiveDirectory ?
Managed by personnel department...
We cannot :
change data structures
add attirubutes
normalize values (!)
add ACL rule (!)
2011 10 15
12. Why whada ? (3)
We want to:
add/drop new privilege definitions
add/drop permission to/from anyone at
anytime
ignore password management
use web centric authentication protocols
2011 10 15
13. whada
authorization data source:
by whada privilege store
authentication data source:
external data source (ex: LDAP)
client access protocol:
LDAP (OpenID/OAuth comming soon!)
https://github.com/tagomoris/whada
2011 10 15
14. whada data
Account: Account Name
Privilege: Label for Authorization
(ex: WHADA, BLOG, BLOG+ADMIN, ...)
2011 10 15