Projects

gsa-crawl-proxy

This open source project provides an extensible mechanism to crawl content located in multiple secure sources with the same server instance. This tool acts as a proxy server that is in between the crawler (i.e. the Google Search Appliance) and the content sources, letting you fully customize the way ... [More] the access to these sources is done at crawling time. This proxy is completely independent of the way the content is served. It extends the crawling options natively implemented in the crawler, taking the advantage of the connectivity provided by the Authentication/Authorization modules for the GSA Valve Security Framework < http://code.google.com/p/gsa-valve-security-framework/ >. These modules implement the integration complexity to securely access to the content sources where documents are. The GSA Crawl Proxy is able to authenticate the crawler user coming from the search appliance using HTTP Basic, and send those credentials to any of these modules that can convert them to any security mechanism the content servers would understand. Latest version: 1.0 (June 2008) [Less]

phprotect

PHProtect is a content protection system coded in PHP. PHProtect works under GNU/Linux, FreeBSD, OpenBSD, NetBSD, OSX, Solaris and NT/2K, they must have a CGI PHP Interpreter or Module installed on the webserver or it won't work, it is "PHProtect", note the PHP . This program will ... [More] allow you to protect a single web file whether it be PHP, HTML or ASP without having to use .htaccess. Authentication is done by a form which pulls a username and password (EG: PHP with the password ASP) from a configuration file, and if it matches what a user has submitted then it will display the content. You are probably wondering, well why can't users just access the protected file from a directory if they are smart enough to know what it's filename is?, the answer to that is simple using special code it will stop direct access to the file unless someone logs in properly on the login form, that's protection at it's best. An added feature is the ability to retrieve your username/password via a script, if you don't have access to the configuration file. PHProtect also supports the ability to use a MySQL Server for authentication, however it only connects to the server. Future releases will support the ability to change the password using a webform and store usernames and passwords in a MySQL Database. [Less]

scaf

Secure data management

stratos-php-framework

A web application framework for PHP

ax2e

AX2E is the authorization framework, which implements the current OASIS XACML 2.0 standard in Java language. See http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=xacml. We believe that OASIS XACML is the standard with great future. It addresses a very important domain of enterprise ... [More] computing: authorization control. XACML defines a XML-based authorization language as well as the request-response type of architecture for delegating the access control decisions to a third party engines. If you have an enterprise application, then you can integrate XACML engine into your infrastructure, so that all authorization logic will be encapsulated in policies, which will be evaluated by a this engine. We are porting the build from Ant to Maven 2, so, please be patient, not everything's smooth yet. All the source codes are Ok, but the build scripts are not polished. Main issue is getting all required libraries into Maven 2 repositories. Most of them are already there. However, some distributions may need to be added manually into your local repositories until we fix the issue. [Less]

codeigniter-keychain

Keychain is a rule-based authorization library for CodeIgniter. It has support for groups and can protect a controller's pages with just two lines. It's designed to be simple of use, for use when you want basis authentication on your websites.

jfap

jFAP – Java Faces Authorization Plug-inProject has been extended, renamed and moved to http://www.sapharee.com/jreco.

ldapsite

IntroAuthorization and Authentication is handled by AuthKit and the information is stored in LDAP for each user. After I clean things up a bit you'll see some files in the download section. Right now it is living on my local system and I'll provide some screenshots. PreRequisitesPython ... [More] 2.4 LDAP 2.3 Pylons 0.9.6 Modulesstring, os, re, shutil, ldap, popen2, crack, hashlib, base64, ldif, ldap.modlistLDAPSchemeuser.name@domain.com, OU, domain.com dn: mailRoutingAddress=user.name@domain.com,ou=OU,dc=domain,dc=com role: UserRole cn: Firstname Lastname objectClass: top objectClass: inetOrgPerson group: UserGroup sn: Lastname givenName: Firstname mailRoutingAddress: user.name@domain.com userPassword:: Screenshots: http://www.flickr.com/photos/89517884@N00/sets/72157600554992696/ [Less]

platonicsoft

Develop using of J2SE 5.0 JPA, Hibernate. Struts 2.0, AJAX for views. The reusable engines. Such as Authorization & Authentication engine build on top of JPA Extended Framework to maintain consistency.

wsgiauthorizer

WSGI application which decides if request has permission to access resource according to FastCGI_authorizer How it worksFastCGI could be used as remote ... [More] authorizer, which is quite handfull for access to static resources. Server before accesing url asks authorizer application for authentication. Authorizer application is just HTTP (FastCGI) aplication. Motivation Flexibly, easyliy and securily allow access to resources. Authorizer could run on server itself (using different privileges), providing autorization information for different resources. This costs CPU, but on file-serving hosts this is no crucial. Returns 200 - allowed (response body is ignored) 403 - forbidden - customize forbidden response by settings `FORBIDDEN_BODY` to desired message Installationsvn checkout http://wsgiauthorizer.googlecode.com/svn/trunk/ wsgiauthorizer-read-only cd wsgiauthorizer-read-only sudo python setup.py installUsagefrom wsgi_authorizer import BaseAuthorizer class MyAuthorizingApp(BaseAuthorizer): """ TODO """ [Less]