User Guide

security.manager is an application with which access rights to services and data in service-based spatial data infrastructures can be organised. Access is restricted to authenticated users, thus securing the recognition of user agreements and preventing unauthorized use.

The integral Security Interceptor is a means employed by the security.manager to secure any service without this requiring any special adjustments.

security.manager employs the Web Authentication Service and the Web Security Service of the 52°North Software Initiative and integrates them within a uniform security policy. These open security services have been tried and tested and can easily be integrated into any infrastructure. security.manager provides specific security interceptors for a selection of common spatial service types (WMS, WFS, WFS-T, ArcGIS Server). These filter both the queries placed with the services, and the response, with respect to the rights of the requesting user. These functions are independent of the software environment from which the services are invoked.

security.manager uses the OASIS XACML standard for formulating descriptions of access rights. User and policy management in security.manager is performed using an intuitive user interface in a standard web browser.