next up previous
Next: Axis Authorization Handler Up: Authorization Framework Overview Previous: Authorization Manager

Authorization Filter

The Authorization Filter is a filter able to protect any Java servlet that requires authorization verification.
The Authorization Filter is placed in the servlet chain, in front of the servlet that needs protection. Every incoming request directed to the servlet is first analyzed by the filter, which extracts the client certificate and passes the subject DN to the Authorization Manager. If the Authorization Manager asserts that the client is associated to an attribute the request is forwarded to the next servlet in the chain, otherwise the request is blocked and terminated by the filter.



2004-05-05