Use of Role-Based Security (RBS) for multiple applications, including non-SF apps


Use of Role-Based Security (RBS) for multiple applications, including...
View
Options
Author
Message
Alex Luyando
Alex Luyando
Alex Luyando
posted 14 Years Ago
StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)
Group: StrataFrame Users
Posts: 112, Visits: 1.2K
Hi all. 

As we look to better manage multiple, technologically-dissimilar applications in order to ease application management tasks, the topic of security has surfaced. Does anyone have thoughts on whether the StrataFrame Role-Based Security (RBS) model and database could be leveraged to become a single user authentication/permissioning system used by departmental web and windows applications, both SF and non-SF based? 

This is very early in the brainstorming phase, but the idea would be that given our usually-similar user roles across multiple applications, we'd setup a StrataFrame security database and use it for all/most apps to determine a given user's role and permissions. As an example assume that one of our users is considered an "admin" and can perform similar "admin-like" duties across a suite of applications. We'd like those apps to all hit against the SF RBS database to determine what permission "keys" the "admin" has. 

Hopefully the above is succinct, yet sufficiently clear enough to make sense. Any thoughts are appreciated. Obviously this is outside the scope of what our friends in Texas had in mind, but... Wink

________________
_____/ Regards,
____/ al
Reply Like 3
Replies
Alex Luyando
Alex Luyando
Alex Luyando
posted 14 Years Ago
StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)StrataFrame User (298 reputation)
Group: StrataFrame Users
Posts: 112, Visits: 1.2K
Greg - 

Definitely help. Thanks! Sounds in line with what I was expecting, including the concern over reusing permissions across multiple apps. Last time I worked on RBS (to setup the initial implementation of a StrataFrame Role-Based Security (RBS) enabled app), I did decide to go with a separate security database for the reasons you gave. Also decided that permissions would be app-specific, but named to facilitate security management. So, I'd have things like

Edit - App A

Edit - App B

ReadOnly - App A

ReadOnly - App x

Appreciate the quick reply! 

________________
_____/ Regards,
____/ al
Reply Like 3
Greg McGuffey
Greg McGuffey
Greg McGuffey
posted 14 Years Ago
Strategic Support Team Member (4.8K reputation)
Group: Forum Members
Posts: 2K, Visits: 6.6K
It looks like you are in good shape.  The hard part will likely be getting non-SF apps to work with it, but that's doable...and if they are .NET apps....then adding SF security is much easier. BigGrin
Reply Like 3
Edhy Rijo
E
Edhy Rijo
posted 14 Years Ago
StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)StrataFrame VIP (6.4K reputation)
Group: StrataFrame Users
Posts: 2.4K, Visits: 23K
Alex Luyando (5/3/2011)
... but named to facilitate security management. So, I'd have things like
Edit - App A
Edit - App B
ReadOnly - App A
ReadOnly - App x


Hi Alex

I would have do it the other way around, Applications, then permissions to encapsulate all permissions per applications, probably that would make it easier to maintenance the security.

App A
  ->Permission Name
       -> Add
       -> Edit
       -> Delete

App B
  ->Permission Name
       -> Add
       -> Edit
       -> Delete

Edhy Rijo
Reply Like 3
GO

Merge Selected

Merge into selected topic...



Merge into merge target...



Merge into a specific topic ID...



Submit

Threaded View
Threaded View
Use of Role-Based Security (RBS) for multiple applications, including...
Alex Luyando - 14 Years Ago
     The sweet thing about the RBS is that you can extend it if you need...
Greg McGuffey - 14 Years Ago
             Greg - Definitely help. Thanks! Sounds in line with what I was...
Alex Luyando - 14 Years Ago
                 It looks like you are in good shape. The hard part will likely be...
Greg McGuffey - 14 Years Ago
                 [quote][b]Alex Luyando (5/3/2011)[/b][hr]... but named to facilitate...
Edhy Rijo - 14 Years Ago

Similar Topics

Post Quoted Reply
Reading This Topic

Powered by InstantForum 2017-1 Final © 2025
Execution: 0.000. 3 queries. Compression Enabled.

Login

Explore
Messages
Mentions
Search