Program modules

This software consists of several program modules, which are installed into a program folder via the installation program and registered with the servlet container as web applications.

Administrator

The basis for the administration and query of users and authorizations consists of three components: WAS, PDP and Administrator website. These three components form the basis of the user and rights management, and are described in more detail in the following.

Administrator Website

The Administrator website is used for managing users, permissions and protected service. The website accesses the relevant database and modifies it at runtime. This means that any changes come into effect immediately.

Web Authentication Service (WAS)

This service is responsible for the authentication of users and documenting the process by issuing identity tokens.

Policy Service (PDP)

The policy service is able to process rights enquiries from the various WSSs and to make decisions based on the rights framework. It is on the basis of these decisions that the WSS either admits or rejects the enquiry or response.

Web Security Service (WSS)

The WSS is the web service with the aid of which a service is secured. It monitors a client’s communication with a service and ensures that only those enquires and responses are communicated that are on line with the user’s respective rights.

Gateway

The Gateway application allows clients, which do not support any of the provided authentication protocols, to access protected resource.