Authorization API examples

Applications can use the authorization API to do access control on specific and specialized processes.

Example 1

We can design a graphical interface to dynamically show interface controls as active or inactive, according to the results of the authorization check.

Example 2

Figure 1 illustrates a request for a Common Gateway Interface (CGI) transaction by a web application.

The lowest level of authorization (Figure A) involves an “all-or-nothing” access control on the URL. This coarse-grained level of authorization determines only Whether the client can run the CGI program. If access is allowed to the CGI application, no further control is available to resources manipulated by the CGI application.

Figure B shows access controls were set on resources the CGI program manipulates. The web application is configured to use the authorization API. The CGI program can call the authorization service to make authorization decisions on the resources it manipulates based on the identity of the requesting client.

Parent topic: ISAM authorization API