Cronman provides a pluggable authorization enforcement policy which limits access based on the REST resource requested, the method of the REST call, and context provided in an optional ASAP token.
The access will be permitted or denied based on the policy encoded in the class(es) indicated as the enforcement policy.
In the Tenant Access policy, the issuer of the ASAP token and the cloudId (cid) field from the special ASAP token are composed to create a key indicating the permitted tenant for the operation. If the key matches the resource, access is permitted, if not the access is rejected.
Rate this page: